Because the percent sign (%) itself can be URL encoded, an attacker can submit a carefully crafted request to a server that is basically double-encoded.

由于百分号(%)本身可以是URL编码的，所以攻击者可以向服务器提交一个精心制作的、基本上是双重编码的请求。

youdao

Because the percent sign (%) itself can be URL encoded, an attacker can submit a carefully crafted request to a server that is basically double-encoded.

由于百分号(%)本身可以是URL编码的，所以攻击者可以向服务器提交一个精心制作的、基本上是双重编码的请求。

youdao