This content has been marked as final. Show 7 replies
Yes, I've created testcase:
app: TESTAPP, user/pass TEST/TESTTEST
On apex.oracle.com it works, but on my db I see in first link in IR ("Петров", RN 327):
the bug appeares after migration from apex 4.0.2/4.1.1. to apex 4.2.1/4.2.2. Upgrade was made by reinstalling apex.
APEX 4.2 introduced escaping of non-ascii characters if the database character set is not UTF-8, to circumvent a certain class of XSS attacks. You can not reproduce the behaviour on apex.oracle.com, because it is set up with AL32UTF8. The switch to control this escaping is in the application security preferences (look for "HTML Escaping Mode"). Apparently, the extended escaping mode triggered a sleeping over-escaping bug in report links. I filed bug #16743663 for this issue.
Thank you for reporting this! We will work on a fix in the next patchset.