If tomcat is servicing a request with a query string such as "id=6218&mode=view", the output of /manager/status?XML=true is not valid xml. It appears that the & in the query string is not being escaped into &.
Created attachment 12648 [details] Very simple fix in the StatusTransformer calls in the manager webapp
Wouldn't it be better to escape all xml characters here? For example what about '>' and '<'? I am not intimate with the source, but is there an xmlEncode function available somewhere that could be used?
I would hope so but I'm not that familiar with the code either :)
OK, fixed for both 5.0.29 and 5.5.3. Used org.apache.catalina.util.RequestUtil#filter, which does XML-escaping properly I think.