blackteay/ThinkAdmin
1
0
Fork 0
mirror of https://gitee.com/zoujingli/ThinkAdmin.git synced 2025-08-07 14:19:46 +08:00
Code Issues Projects Releases Wiki Activity

修复session变量xss问题

Browse Source
This commit is contained in:
Anyon 2020-12-02 14:15:11 +08:00
parent 4cc07b238a
commit 5e7c232500
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
app/admin/view/index/index.html
View File

@ -54,8 +54,8 @@
<dd lay-unselect><a data-load="{:url('admin/login/out')}" data-confirm="确定要退出登录吗?"><i class="layui-icon layui-icon-release"></i> 退出登录</a></dd> <dd lay-unselect><a data-load="{:url('admin/login/out')}" data-confirm="确定要退出登录吗?"><i class="layui-icon layui-icon-release"></i> 退出登录</a></dd>
</dl> </dl>
<a class="layui-elip"> <a class="layui-elip">
<img alt="headimg" src="{:session('user.headimg')?:'__ROOT__/static/theme/img/headimg.png'}"> <img alt="headimg" src="{:htmlentities(session('user.headimg')?:'__ROOT__/static/theme/img/headimg.png')}">
<span>{:session('user.nickname')?:session('user.username')}</span> <span>{:htmlentities(session('user.nickname')?:session('user.username'))}</span>
</a> </a>
</li> </li>
{else} {else}