Home Explore Help
Register Sign In
root
/
gs_bg
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Browse Source

升级shiro到最新版1.5.3 阻止权限绕过漏洞

RuoYi 4 years ago
parent
829dfafdaa
commit
1b7a735f9c
2 changed files with 2 additions and 2 deletions
Split View Show Diff Stats
  1. 1 1
      pom.xml
  2. 1 1
      ruoyi-admin/src/main/resources/templates/index.html

+ 1 - 1
pom.xml
View File 

@@ -17,7 +17,7 @@
 
 		<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>

 		<project.reporting.outputEncoding>UTF-8</project.reporting.outputEncoding>

 		<java.version>1.8</java.version>

-		<shiro.version>1.4.2</shiro.version>

+		<shiro.version>1.5.3</shiro.version>

 		<thymeleaf.extras.shiro.version>2.0.0</thymeleaf.extras.shiro.version>

 		<mybatis.boot.version>1.3.2</mybatis.boot.version>

 		<druid.version>1.1.14</druid.version>

+ 1 - 1
ruoyi-admin/src/main/resources/templates/index.html
View File 

@@ -316,7 +316,7 @@ $(function() {
 
 		        $dataObj.parents("ul").addClass("in")

 		        $dataObj.parents("li").addClass("active").siblings().removeClass("active").find('li').removeClass("active");

 		        $dataObj.parents("ul").css('height', 'auto').height();

-		        $('a[href$="' + decodeURI(dataId) + '"]').click();

+		        $dataObj.click();

 		    }

 		})

 	}