automas_admin/AUTO-MAS-test
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

用户密码加密部分上线,SQL指令更新防止注入攻击

Browse Source
This commit is contained in:
DLmaster
2024-02-11 19:45:28 +08:00
parent 863b6dd220
commit 3b0b50670d
7 changed files with 156 additions and 36 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
run.py
View File

@@ -47,12 +47,11 @@ def runmaa(tel,game,num=2):
def updata(id):
db=sqlite3.connect(DATABASE)
cur=db.cursor()
cur.execute("SELECT * FROM adminx WHERE admin='%s'" %(id))
cur.execute("SELECT * FROM adminx WHERE admin=?",(id,))
info=cur.fetchall()
cur.execute("UPDATE adminx SET day=%d WHERE admin='%s'" %(info[0][2]-1,id))
cur.execute("UPDATE adminx SET day=? WHERE admin=?",(info[0][2]-1,id))
db.commit()
cur.execute("UPDATE adminx SET last='%s' WHERE admin='%s'" %(curdate,id))
print("upcurdate")
cur.execute("UPDATE adminx SET last=? WHERE admin=?",(curdate,id))
db.commit()
cur.close()
db.close()