shen/novel-plus
1
0
Fork 0
mirror of https://github.com/201206030/novel-plus.git synced 2026-01-31 06:59:44 +08:00
Code Issues Packages Projects Releases Wiki Activity

fix: 修复sort和order参数的SQL注入漏洞

Browse Source
This commit is contained in:
xiongxiaoyang
2025-07-17 19:03:58 +08:00
parent 54bd194b98
commit 3db8828384
36 changed files with 344 additions and 29 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
novel-admin/src/main/java/com/java2nb/novel/dao/BookCommentDao.java
View File

@@ -1,5 +1,7 @@
package com.java2nb.novel.dao;
import com.java2nb.common.annotation.ValidateSortOrder;
import com.java2nb.novel.domain.BookCommentDO;
import java.util.List;
@@ -18,7 +20,7 @@ public interface BookCommentDao {
BookCommentDO get(Long id);
List<BookCommentDO> list(Map<String,Object> map);
List<BookCommentDO> list(@ValidateSortOrder Map<String,Object> map);
int count(Map<String,Object> map);