From b9b93aa08d9ccfd6956102f10e947f9f2e834331 Mon Sep 17 00:00:00 2001
From: Dave Wichers <dwichers@gmail.com>
Date: Wed, 4 Feb 2026 14:13:26 -0500
Subject: [PATCH] Potential fix for code scanning alert no. 76: Information
 exposure through an error message

Bad INFO LEAK fix for Benchmark00825.java:85

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
---
 .../java/org/owasp/benchmark/testcode/Benchmark00825.java     | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/main/java/org/owasp/benchmark/testcode/Benchmark00825.java b/src/main/java/org/owasp/benchmark/testcode/Benchmark00825.java
index a460001..69abbab 100644
--- a/src/main/java/org/owasp/benchmark/testcode/Benchmark00825.java
+++ b/src/main/java/org/owasp/benchmark/testcode/Benchmark00825.java
@@ -82,8 +82,8 @@ public void doPost(HttpServletRequest request, HttpServletResponse response)
             org.owasp.benchmark.helpers.Utils.printOSCommandResults(p, response);
         } catch (IOException e) {
             System.out.println("Problem executing cmdi - Case");
-            response.getWriter()
-                    .println(org.owasp.esapi.ESAPI.encoder().encodeForHTML(e.getMessage()));
+            e.printStackTrace();
+            response.getWriter().println("Problem executing cmdi - Case");
             return;
         }
     }