From 245854b3e353dae80a5a3924606a97ff27ca3008 Mon Sep 17 00:00:00 2001 From: duandazhi Date: Wed, 28 Jul 2021 14:37:12 +0800 Subject: [PATCH] =?UTF-8?q?sysusercontrolelr=20=E5=88=A0=E9=99=A4=E6=97=A0?= =?UTF-8?q?=E6=95=88=E6=B3=A8=E9=87=8A?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- .../main/java/com/ruoyi/system/controller/SysUserController.java | 1 - 1 file changed, 1 deletion(-) diff --git a/ruoyi-modules/ruoyi-system/src/main/java/com/ruoyi/system/controller/SysUserController.java b/ruoyi-modules/ruoyi-system/src/main/java/com/ruoyi/system/controller/SysUserController.java index 60c6052e..b10f41b9 100644 --- a/ruoyi-modules/ruoyi-system/src/main/java/com/ruoyi/system/controller/SysUserController.java +++ b/ruoyi-modules/ruoyi-system/src/main/java/com/ruoyi/system/controller/SysUserController.java @@ -157,7 +157,6 @@ public class SysUserController extends BaseController return AjaxResult.error("userId不能为空!"); } // 用户信息可以被爆破 dazer - //安全漏洞测试fix,增加防止越权的操作;不法分子,可能通过修改 userid 抓取、修改、删除、重置 任意用户敏感信息 (1 getInfo) if (!this.checkUserIdAllowed(userId)) { return AjaxResult.error("请勿非法操作,你无权操作该用户,userId = " + userId ); }