This is the last version of the patch for version 0.8.52 which is now live on our production servers for several days without any flaws. http://www.coderain.de/nginx/nginx-0.8.52-xred.patch The escaping takes place at ngx_http_parse_unsafe_uri() as Maxim suggested. best regards volker Posted at Nginx Forum: http://forum.nginx.org/read.php?2,128346,136548#msg-136548