正在显示
3 个修改的文件
包含
5 行增加
和
1 行删除
@@ -26,6 +26,8 @@ class Attachment extends Backend | @@ -26,6 +26,8 @@ class Attachment extends Backend | ||
26 | */ | 26 | */ |
27 | public function index() | 27 | public function index() |
28 | { | 28 | { |
29 | + //设置过滤方法 | ||
30 | + $this->request->filter(['strip_tags']); | ||
29 | if ($this->request->isAjax()) | 31 | if ($this->request->isAjax()) |
30 | { | 32 | { |
31 | list($where, $sort, $order, $offset, $limit) = $this->buildparams(); | 33 | list($where, $sort, $order, $offset, $limit) = $this->buildparams(); |
@@ -20,6 +20,8 @@ class Profile extends Backend | @@ -20,6 +20,8 @@ class Profile extends Backend | ||
20 | */ | 20 | */ |
21 | public function index() | 21 | public function index() |
22 | { | 22 | { |
23 | + //设置过滤方法 | ||
24 | + $this->request->filter(['strip_tags']); | ||
23 | if ($this->request->isAjax()) | 25 | if ($this->request->isAjax()) |
24 | { | 26 | { |
25 | $model = model('AdminLog'); | 27 | $model = model('AdminLog'); |
@@ -202,7 +202,7 @@ class Backend extends Controller | @@ -202,7 +202,7 @@ class Backend extends Controller | ||
202 | $relationSearch = is_null($relationSearch) ? $this->relationSearch : $relationSearch; | 202 | $relationSearch = is_null($relationSearch) ? $this->relationSearch : $relationSearch; |
203 | $search = $this->request->get("search", ''); | 203 | $search = $this->request->get("search", ''); |
204 | $filter = $this->request->get("filter", ''); | 204 | $filter = $this->request->get("filter", ''); |
205 | - $op = $this->request->get("op", ''); | 205 | + $op = $this->request->get("op", '', 'trim'); |
206 | $sort = $this->request->get("sort", "id"); | 206 | $sort = $this->request->get("sort", "id"); |
207 | $order = $this->request->get("order", "DESC"); | 207 | $order = $this->request->get("order", "DESC"); |
208 | $offset = $this->request->get("offset", 0); | 208 | $offset = $this->request->get("offset", 0); |
-
请 注册 或 登录 后发表评论