From bc11ec0e6b09d1da34abd970a2acf7b461127eca Mon Sep 17 00:00:00 2001
From: Pu Zhibing <393733352@qq.com>
Date: 星期二, 16 九月 2025 15:19:12 +0800
Subject: [PATCH] 修改安全漏洞

---
 management/guns-admin/src/main/webapp/WEB-INF/view/common/_container.html |   29 +++++++++++++++++++++++++++++
 1 files changed, 29 insertions(+), 0 deletions(-)

diff --git a/management/guns-admin/src/main/webapp/WEB-INF/view/common/_container.html b/management/guns-admin/src/main/webapp/WEB-INF/view/common/_container.html
index 1c500bf..00b43a7 100644
--- a/management/guns-admin/src/main/webapp/WEB-INF/view/common/_container.html
+++ b/management/guns-admin/src/main/webapp/WEB-INF/view/common/_container.html
@@ -66,6 +66,7 @@
     <script type="text/javascript" charset="utf-8" src="${ctxPath}/djadmin/static/js/ueditor/jsp/ueditor.config.js"></script>
     <script type="text/javascript" charset="utf-8" src="${ctxPath}/djadmin/static/js/ueditor/jsp/ueditor.all.js"></script>
     <script type="text/javascript" charset="utf-8" src="${ctxPath}/djadmin/static/js/ueditor/jsp/lang/zh-cn/zh-cn.js"></script>
+    <script src="${ctxPath}/djadmin/static/crypto-js/crypto-js.js"></script>
     <!--<style type="text/css">
         table{  
             width:100px;  
@@ -288,7 +289,35 @@
                 }
             });
         }
+        var key = CryptoJS.enc.Utf8.parse("xqT86jictTPpHMem");
+        var iv = CryptoJS.enc.Utf8.parse("xqT86jicxqT86jic");
 
+        //aes加密
+        function encrypt(context) {
+            var encrypted = '';
+            if (typeof(context) == 'string') {
+
+            }else if(typeof(context) == 'object'){
+                context = JSON.stringify(context);
+            }
+            var srcs = CryptoJS.enc.Utf8.parse(context);
+            encrypted = CryptoJS.AES.encrypt(srcs, key, {
+                iv: iv,
+                mode: CryptoJS.mode.CBC,
+                padding: CryptoJS.pad.Pkcs7
+            });
+            return encrypted.toString();
+        }
+        // aes解密
+        function decrypt(context) {
+            var decrypt = CryptoJS.AES.decrypt(context, key, {
+                iv: iv,
+                mode: CryptoJS.mode.CBC,
+                padding: CryptoJS.pad.Pkcs7
+            });
+            var decryptedStr = decrypt.toString(CryptoJS.enc.Utf8);
+            return decryptedStr.toString();
+        }
         // 页面加载完成后启动轮询
         $(document).ready(function() {
             // 延迟5秒后开始轮询，避免页面加载时的性能影响

--
Gitblit v1.7.1