Bug564-JiangChao #152

Merged

mrlan merged 5 commits from Bug564-JiangChao into Alpha-snapshot20240618 2024-08-26 10:29:26 +08:00

Conversation 1 Commits 5 Files Changed 3

jiangchao commented 2024-07-03 15:26:16 +08:00

admin管理文章界面的删除文章没有二次确认，即点即删。127.0.0.1:5000/admin/article?delete_id=50就直接删除了article_id=50的文章，而且使用的是get请求，可能受到CSRF攻击，不安全。建议增加二次确认，并验证article_id确实存在于数据库中，改成post请求。

admin管理文章界面的删除文章没有二次确认，即点即删。127.0.0.1:5000/admin/article?delete_id=50就直接删除了article_id=50的文章，而且使用的是get请求，可能受到CSRF攻击，不安全。建议增加二次确认，并验证article_id确实存在于数据库中，改成post请求。

jiangchao added 5 commits 2024-07-03 15:26:16 +08:00

8cbc7c9a0c 修复快速点击下一页按钮点击频率过快时页面跳转到未知名页面

4b06915dc4 解决合并冲突

54d09469f5 修复Bug564

f4488672ec Merge branch 'Alpha-snapshot20240618' of http://118.25.96.118:3000/mrlan/EnglishPal into Bug564-JiangChao

3383e411ec Fix bug 564 添加注释版

mrlan commented 2024-07-30 08:45:01 +08:00

Owner

已经验证

已经验证

mrlan added 1 commit 2024-08-26 10:28:37 +08:00

66899376c3 userpaget_get.html: Resolve merge conflicts

mrlan merged commit d502b3f474 into Alpha-snapshot20240618 2024-08-26 10:29:26 +08:00

mrlan referenced this issue from a commit 2024-08-26 10:29:28 +08:00

Merge pull request 'Bug564-JiangChao' (#152) from Bug564-JiangChao into Alpha-snapshot20240618

Sign in to join this conversation.

Reviewers

No reviewers

Labels

Clear labels

No items

No Label

Milestone

Clear milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

No Assignees

2 Participants

Notifications

Subscribe

Due Date

The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: mrlan/EnglishPal#152

There is no content yet.