Index: forgon-core/src/main/java/com/forgon/xss/util/XSSFilterUtil.java
===================================================================
diff -u -r34613 -r34615
--- forgon-core/src/main/java/com/forgon/xss/util/XSSFilterUtil.java	(.../XSSFilterUtil.java)	(revision 34613)
+++ forgon-core/src/main/java/com/forgon/xss/util/XSSFilterUtil.java	(.../XSSFilterUtil.java)	(revision 34615)
@@ -24,6 +24,9 @@
 		if(StringUtils.isNotBlank(value)){
 			value = value.replaceAll("<", "＜");
 			value = value.replaceAll(">", "＞");
+			value = value.replaceAll("prompt", "PROMPT");
+			value = value.replaceAll("confirm", "CONFIRM");
+			value = value.replaceAll("alert", "ALERT");
 			//下面两行会影响正常的json数据传送,暂先注释
 			//value = value.replaceAll("\\\"", "&quot");
 			//value = value.replaceAll("&", "&amp");