ak
/
msopen
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

sql注入问题

This commit is contained in:
sgjj 2020-06-28 17:59:51 +08:00
parent 7170fece88
commit b03b44a3c6
1 changed files with 3 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
src/main/java/net/mingsoft/cms/action/web/MCmsAction.java
View File

@ -200,6 +200,9 @@ public class MCmsAction extends net.mingsoft.cms.action.BaseAction {
return; return;
} }
} }
if(sqlFilter(orderby)){
orderby = "id";
}
PageBean page = new PageBean(); PageBean page = new PageBean();
//根据文章编号查询栏目详情模版 //根据文章编号查询栏目详情模版
CategoryEntity column = (CategoryEntity) categoryBiz.getEntity(Integer.parseInt(article.getContentCategoryId())); CategoryEntity column = (CategoryEntity) categoryBiz.getEntity(Integer.parseInt(article.getContentCategoryId()));