Home Explore Help
Register Sign In
wangyu
/
post-check-api
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

漏洞修复

zjs 3 weeks ago
parent
a6bc139f83
commit
109408d2c3
1 changed files with 1 additions and 0 deletions
Split View Show Diff Stats
  1. 1 0
      ruoyi-admin/src/main/java/com/ruoyi/web/controller/common/CommonController.java

+ 1 - 0
ruoyi-admin/src/main/java/com/ruoyi/web/controller/common/CommonController.java
View File 

@@ -113,6 +113,7 @@ public class CommonController {
113 113 
                 // 判断文件xss攻击
114 114 
                 boolean haveJavaScript = PdfUtils.containsJavaScript(PdfUtils.multipartFileToFile(file));
115 115 
                 if (haveJavaScript) {
116 
+                    return AjaxResult.error("您上传的文件包含xss脚本代码!");
116 117 
 //                    return ("对不起,您上传的文件[" + fileName + "]包含xss脚本代码!");
117 118 
                 }
118 119 
             }