(Enhance: Core/ASPXCSHARP) 兼容内存马，动态获取类名，修复数据库获取列名的BUG

19d038dc · yzddmr6 · Medicean · 15214afe · 19d038dc · 19d038dc
Commit 19d038dc authored Jan 02, 2022 by yzddmr6 Committed by Medicean Jul 17, 2022
7 changed files
--- a/source/core/aspxcsharp/template/base.js
+++ b/source/core/aspxcsharp/template/base.js
--- a/source/core/aspxcsharp/template/command.js
+++ b/source/core/aspxcsharp/template/command.js
--- a/source/core/aspxcsharp/template/database/default.js
+++ b/source/core/aspxcsharp/template/database/default.js
--- a/source/core/aspxcsharp/template/database/sqlserver.js
+++ b/source/core/aspxcsharp/template/database/sqlserver.js
--- a/source/core/aspxcsharp/template/filemanager.js
+++ b/source/core/aspxcsharp/template/filemanager.js
--- a/source/modules/database/asp/index.js
+++ b/source/modules/database/asp/index.js
@@ -650,7 +650,6 @@ class ASP {
    let sql = "";
    switch (conf['type']) {
      case "oracle":
-        // sql = `SELECT * FROM ${db}.${table} WHERE ROWNUM=0`;
        sql = `SELECT COLUMN_NAME,DATA_TYPE,DATA_LENGTH FROM ALL_TAB_COLUMNS WHERE OWNER='${db}' AND TABLE_NAME='${table}' ORDER BY COLUMN_ID`;
        break;
      case 'sqlserver':

--- a/source/modules/database/aspxcsharp/index.js
+++ b/source/modules/database/aspxcsharp/index.js
@@ -92,7 +92,7 @@ class ASPXCSHARP {
              case 'sqlserver':
              case 'mssql':
              case 'sqlsrv':
-                sql = `SELECT TOP 20 [${column}] FROM [${table}] ORDER BY 1 DESC;`;
+                sql = `SELECT TOP 20 [${column}] FROM [${db}].dbo.[${table}] ORDER BY 1 DESC;`;
                break;
              case 'oracle':
              case 'oracle_oci8':
@@ -670,21 +670,37 @@ class ASPXCSHARP {
          };
          _ = antSword.unxss(_);
          const _column = Buffer
-            .from(_.substr(0, _.lastIndexOf(' ')))
+            .from(_)
            .toString('base64');
          this
            .tree
            .insertNewItem(`table::${id}:${_db}:${_table}`, `column::${id}:${_db}:${_table}:${_column}`, antSword.noxss(_), null, this.manager.list.imgs[3], this.manager.list.imgs[3], this.manager.list.imgs[3]);
        });
+
+        let sql = "";
+        switch (conf['type']) {
+          case "oracle":
+            sql = `SELECT COLUMN_NAME,DATA_TYPE,DATA_LENGTH FROM ALL_TAB_COLUMNS WHERE OWNER='${db}' AND TABLE_NAME='${table}' ORDER BY COLUMN_ID`;
+            break;
+          case 'sqlserver':
+          case 'sqloledb_1':
+          case 'sqloledb_1_sspi':
+            sql = `USE [${this.dbconf['database']}];SELECT TOP 0 * FROM ${table}`;
+            break;
+          case 'mysql':
+            sql = `SELECT * FROM ${table} LIMIT 0,0;`;
+            break;
+          default:
+            sql = `SELECT TOP 1 * FROM ${table} ORDER BY 1 DESC`;
+            break;
+        }
        // 更新编辑器SQL语句
        this
          .manager
          .query
          .editor
          .session
-          .setValue(conf['type'] === 'oracle' ?
-            `SELECT * FROM (SELECT A.*,ROWNUM N FROM ${db}.${table} A ORDER BY 1 DESC) WHERE N>0 AND N<=20` :
-            `SELECT * FROM ${db}.${table} ORDER BY 1 DESC LIMIT 0,20;`);
+          .setValue(sql);
        this
          .manager
          .list