From 95d07a277b0250660a270c0e389ccb047359801b Mon Sep 17 00:00:00 2001 From: RuoYi Date: Tue, 6 Jan 2026 13:04:42 +0800 Subject: [PATCH] =?UTF-8?q?=E4=BF=AE=E6=94=B9Thymeleaf=E5=8F=98=E9=87=8F?= =?UTF-8?q?=EF=BC=8C=E9=98=B2=E6=AD=A2SSTI=20RCE=E9=A3=8E=E9=99=A9?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- .../demo/controller/DemoFormController.java | 4 ++-- .../web/controller/monitor/CacheController.java | 12 ++++++------ .../resources/templates/demo/form/localrefresh.html | 3 +-- .../resources/templates/monitor/cache/cache.html | 9 ++------- 4 files changed, 11 insertions(+), 17 deletions(-) diff --git a/ruoyi-admin/src/main/java/com/ruoyi/web/controller/demo/controller/DemoFormController.java b/ruoyi-admin/src/main/java/com/ruoyi/web/controller/demo/controller/DemoFormController.java index 0f72816f..5e02baa7 100644 --- a/ruoyi-admin/src/main/java/com/ruoyi/web/controller/demo/controller/DemoFormController.java +++ b/ruoyi-admin/src/main/java/com/ruoyi/web/controller/demo/controller/DemoFormController.java @@ -273,7 +273,7 @@ public class DemoFormController * @param taskName 任务名称 */ @PostMapping("/localrefresh/task") - public String localRefreshTask(String fragment, String taskName, ModelMap mmap) + public String localRefreshTask(String taskName, ModelMap mmap) { JSONArray list = new JSONArray(); JSONObject item = new JSONObject(); @@ -287,7 +287,7 @@ public class DemoFormController item.put("date", "2018.06.12"); list.add(item); mmap.put("tasks", list); - return prefix + "/localrefresh::" + fragment; + return prefix + "/localrefresh::fragment-tasklist"; } /** diff --git a/ruoyi-admin/src/main/java/com/ruoyi/web/controller/monitor/CacheController.java b/ruoyi-admin/src/main/java/com/ruoyi/web/controller/monitor/CacheController.java index 995ce8af..f8ec6dec 100644 --- a/ruoyi-admin/src/main/java/com/ruoyi/web/controller/monitor/CacheController.java +++ b/ruoyi-admin/src/main/java/com/ruoyi/web/controller/monitor/CacheController.java @@ -36,29 +36,29 @@ public class CacheController extends BaseController @RequiresPermissions("monitor:cache:view") @PostMapping("/getNames") - public String getCacheNames(String fragment, ModelMap mmap) + public String getCacheNames(ModelMap mmap) { mmap.put("cacheNames", cacheService.getCacheNames()); - return prefix + "/cache::" + fragment; + return prefix + "/cache::fragment-cache-names"; } @RequiresPermissions("monitor:cache:view") @PostMapping("/getKeys") - public String getCacheKeys(String fragment, String cacheName, ModelMap mmap) + public String getCacheKeys(String cacheName, ModelMap mmap) { mmap.put("cacheName", cacheName); mmap.put("cacheKeys", cacheService.getCacheKeys(cacheName)); - return prefix + "/cache::" + fragment; + return prefix + "/cache::fragment-cache-kyes"; } @RequiresPermissions("monitor:cache:view") @PostMapping("/getValue") - public String getCacheValue(String fragment, String cacheName, String cacheKey, ModelMap mmap) + public String getCacheValue(String cacheName, String cacheKey, ModelMap mmap) { mmap.put("cacheName", cacheName); mmap.put("cacheKey", cacheKey); mmap.put("cacheValue", cacheService.getCacheValue(cacheName, cacheKey)); - return prefix + "/cache::" + fragment; + return prefix + "/cache::fragment-cache-value"; } @RequiresPermissions("monitor:cache:view") diff --git a/ruoyi-admin/src/main/resources/templates/demo/form/localrefresh.html b/ruoyi-admin/src/main/resources/templates/demo/form/localrefresh.html index 53009274..799b66f5 100644 --- a/ruoyi-admin/src/main/resources/templates/demo/form/localrefresh.html +++ b/ruoyi-admin/src/main/resources/templates/demo/form/localrefresh.html @@ -48,8 +48,7 @@ type: "post", url: ctx + "demo/form/localrefresh/task", data: { - "taskName": $("#task-name").val(), - "fragment":'fragment-tasklist' + "taskName": $("#task-name").val() }, success: function(data) { $("#tasklist").html(data); diff --git a/ruoyi-admin/src/main/resources/templates/monitor/cache/cache.html b/ruoyi-admin/src/main/resources/templates/monitor/cache/cache.html index 38df336a..d392c9a6 100644 --- a/ruoyi-admin/src/main/resources/templates/monitor/cache/cache.html +++ b/ruoyi-admin/src/main/resources/templates/monitor/cache/cache.html @@ -105,9 +105,6 @@ function getCacheNames() { $.ajax({ type: "post", url: prefix + "/getNames", - data: { - "fragment": 'fragment-cache-names' - }, success: function(data) { $("#cacheNames").html(data); $.modal.msgSuccess("刷新缓存列表成功"); @@ -121,8 +118,7 @@ function getCacheKeys(cacheName, isMsg) { type: "post", url: prefix + "/getKeys", data: { - "cacheName": _cacheName, - "fragment": 'fragment-cache-kyes' + "cacheName": _cacheName }, success: function(data) { $("#cacheKeys").html(data); @@ -140,8 +136,7 @@ function getCacheValue(cacheName, cacheKey) { url: prefix + "/getValue", data: { "cacheName": cacheName, - "cacheKey": cacheKey, - "fragment": 'fragment-cache-value' + "cacheKey": cacheKey }, success: function(data) { $("#cacheValue").html(data);