Application error message this vulnerability

Others 2022-04-28 13:05:48 views: 0

Problem Description:

This vulnerability is caused by the fact that the attributes are not corresponding when the front-end parameters are passed to the back-end

solution:

There are three solutions:

1. The entity corresponding to the background needs to have set/get methods with their own attributes.

2. Put these two properties in the try...catch... statement.

3. If it is still not possible, the front-end code must verify these two attributes to ensure that the format type passed to the back-end parameter is correct with the data type of the back-end.


There are other cases of this problem. It is necessary to jump to a page for background exceptions. The class is the 500.html page. The following is the control of the jump page by spring boot by writing a configuration file.


package com.qzt.config.cors;

import org.springframework.boot.context.embedded.ConfigurableEmbeddedServletContainer;
import org.springframework.boot.context.embedded.EmbeddedServletContainerCustomizer;
import org.springframework.boot.web.servlet.ErrorPage;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
import org.springframework.http.HttpStatus;
import org.springframework.web.servlet.config.annotation.CorsRegistry;
import org.springframework.web.servlet.config.annotation.ViewControllerRegistry;
import org.springframework.web.servlet.config.annotation.WebMvcConfigurer;
import org.springframework.web.servlet.config.annotation.WebMvcConfigurerAdapter;

@Configuration
public class CorsConfig {

    //统一页码处理配置  
   @Bean  
  public EmbeddedServletContainerCustomizer containerCustomizer() {  
     return new EmbeddedServletContainerCustomizer() {  
            @Override  
           public void customize(ConfigurableEmbeddedServletContainer container) {  
                //ErrorPage error401Page = new ErrorPage(HttpStatus.UNAUTHORIZED, "/401.html");  
              // ErrorPage error404Page = new ErrorPage(HttpStatus.NOT_FOUND, "/Err404.html");  
               ErrorPage error500Page = new ErrorPage(HttpStatus.INTERNAL_SERVER_ERROR, "/page/500.html"); 

               container.addErrorPages(error500Page);    

        }    

};  

   }

}



Guess you like

Origin http://43.154.161.224:23101/article/api/json?id=326331086&siteId=291194637
Recommended
Ranking
A quick primer on numpy basics
Two sister tease python project
Java | Multiple keywords in the replacement content are returned to the front end in red style
C ++: references
The string leetcood 1018 is a binary prefix divisible by 5
Flutter 布局组件
Java combat spingboot-redis
PMP pre-exam sprint and wrong questions sorting
ActiveMq C# Message Features: Delayed and Timed Message Delivery
DSP28377S_ copy a program from the RAM to FLASH portion DETAILS
Daily
More
2024-05-16(23)
2024-05-15(5)
2024-05-14(9)
2024-05-13(8)
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)
2024-05-09(32)
2024-05-08(18)
2024-05-07(34)

Code World

© 2018 codetd.com