偶看新闻灵格斯 朗文双解 ld2:查询语句安全威胁(付解决方法)
来源:百度文库 编辑:偶看新闻 时间:2024/04/28 21:29:05
TOOLS的:
查询语句安全威胁
SQL: SELECT count(*) FROM `dzx`.{tablepre}ucenter_pms WHERE msgfrom != (SELECT username FROM {tablepre}common_member WHERE uid = msgtoid )
Backtrace: admin.php:56 -> source/admincp/admincp_exttools.php:1370 -> source/class/class_core.php:881 -> source/class/class_core.php:930 -> source/class/class_core.php:913
点击这里寻求帮助
Backtrace
sitemap的:
查询语句安全威胁
SQL: SELECT fid,type,status FROM {tablepre}forum_forum WHERE status IN ("group","forum")
Backtrace: admin.php:56 -> source/admincp/admincp_plugins.php:706 -> source/plugin/sitemap/admincp.inc.php:83 -> source/class/class_core.php:886 -> source/class/class_core.php:930 -> source/class/class_core.php:913
点击这里寻求帮助
Backtrace
FileLineFunction1:admin.php56require()2:source/admincp/admincp_plugins.php706include()3:source/plugin/sitemap/admincp.inc.php83DB::query()4:source/class/class_core.php886DB::checkquery()5:source/class/class_core.php930DB::_execute()6:source/class/class_core.php913db_mysql->halt()
解决办法:
原来是
$_config['security']['querysafe']['status'] = 1; // 是否开启SQL安全检测,可自动预防SQL注入攻
打开
config_global.php