wgh/coreshoppro
1
0
Fork 0
mirror of http://git.coreshop.cn/jianweie/coreshoppro.git synced 2026-03-22 14:27:21 +08:00
Code Issues Packages Projects Releases Wiki Activity

接口端【调整】:因容易出现误判,取消接口端上传文件是否包含木马流的检测功能,待找到更合理解决方案再完善。

Browse Source
This commit is contained in:
大灰灰
2024-11-06 15:47:36 +08:00
parent 991dbd8efd
commit 3111b8460d
1 changed files with 15 additions and 15 deletions
Download Patch File Download Diff File Expand all files Collapse all files

30
CoreCms.Net.Web.WebApi/Controllers/CommonController.cs
View File

@@ -373,16 +373,16 @@ namespace CoreCms.Net.Web.WebApi.Controllers
} }
// 使用StreamReader来读取文件内容 // 使用StreamReader来读取文件内容
using (var reader = new StreamReader(file.OpenReadStream(), Encoding.UTF8)) //using (var reader = new StreamReader(file.OpenReadStream(), Encoding.UTF8))
{ //{
var content = await reader.ReadToEndAsync(); // 注意:这可能会消耗大量内存对于大文件,所以需要限制上传大小 // var content = await reader.ReadToEndAsync(); // 注意:这可能会消耗大量内存对于大文件,所以需要限制上传大小
// 检查内容是否合法 // // 检查内容是否合法
if (CommonHelper.CheckData(content)) // if (CommonHelper.CheckData(content))
{ // {
jm.msg = "请勿提交非法数据。"; // jm.msg = "请勿提交非法数据。";
return jm; // return jm;
} // }
} //}
var url = string.Empty; var url = string.Empty;
if (filesStorageOptions.StorageType == GlobalEnumVars.FilesStorageOptionsType.LocalStorage.ToString()) if (filesStorageOptions.StorageType == GlobalEnumVars.FilesStorageOptionsType.LocalStorage.ToString())
@@ -437,11 +437,11 @@ namespace CoreCms.Net.Web.WebApi.Controllers
return jm; return jm;
} }
if (CommonHelper.CheckData(entity.base64)) //if (CommonHelper.CheckData(entity.base64))
{ //{
jm.msg = "请勿提交非法内容。"; // jm.msg = "请勿提交非法内容。";
return jm; // return jm;
} //}
//检查上传大小 //检查上传大小
if (!CommonHelper.CheckBase64Size(entity.base64, filesStorageOptions.MaxSize)) if (!CommonHelper.CheckBase64Size(entity.base64, filesStorageOptions.MaxSize))