molong/sentcms
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

修复一处sql注入的问题

Browse Source
This commit is contained in:
molong
2017-06-01 10:07:21 +08:00
parent 426195eb90
commit 6a98708e85
1 changed files with 6 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
application/common/model/SeoRule.php
View File

@@ -113,9 +113,12 @@ class SeoRule extends Base{
private function getRelatedRules($module, $controller, $action){
//查询与当前页面相关的SEO规则
$map = "(app='*' or app='$module') and (controller='*' or controller='$controller') and (action='*' or action='$action') and status=1";
$rules = $this->where($map)->order('sort asc')->select();
$rules = $this->where('app',['=','*'],['=',$module],'or')
->where('controller',['=','*'],['=',$controller],'or')
->where('action',['=','*'],['=',$action],'or')
->where('status', 1)
->order('sort asc')
->select();
//返回规则列表
return $rules;