From 8bc7296fb4f8d87fc514a7ef04b8a419948de836 Mon Sep 17 00:00:00 2001
From: RuoYi <yzz_ivy@163.com>
Date: Fri, 20 Dec 2019 11:34:45 +0800
Subject: [PATCH] 添加HTML过滤器，用于去除XSS漏洞隐患

---
 ruoyi/src/main/java/com/ruoyi/common/utils/html/EscapeUtil.java |    2 +-
 1 files changed, 1 insertions(+), 1 deletions(-)

diff --git a/ruoyi/src/main/java/com/ruoyi/common/utils/html/EscapeUtil.java b/ruoyi/src/main/java/com/ruoyi/common/utils/html/EscapeUtil.java
index f6754c4..0f45527 100644
--- a/ruoyi/src/main/java/com/ruoyi/common/utils/html/EscapeUtil.java
+++ b/ruoyi/src/main/java/com/ruoyi/common/utils/html/EscapeUtil.java
@@ -58,7 +58,7 @@
      */
     public static String clean(String content)
     {
-        return content.replaceAll(RE_HTML_MARK, "");
+        return new HTMLFilter().filter(content);
     }
 
     /**

--
Gitblit v1.9.2