checkout get database price

Author: YComputer

README.md

@@ -13,6 +13,12 @@ INSERT INTO orders (pid, qty, userid, hash, status) VALUES ('1-2', '1-1', 1, 'pr
 
 
 // sql 注入攻击
+// 恒真恒假测试
+'and'1'='2
+'and'1'='1
+' or '1'='1
+
+//登录距离
 $sql = "SELECT * FROM users WHERE name='{$_POST['name']}' AND pwd='{$_POST['pwd']}'";
 // 用户注入
 $_POST['user'] = 'john';

application/models/Product_model.php

@@ -73,6 +73,9 @@ public function change_catgory($catid){
     $response = array('status'=>'0','msg'=>'failed','data'=>'');
     try{
         if($catid >= 0){
+          // sql injection 测试代码
+          // $query = $this->db->get_where('products',array('catid'=>"1"));
+          // $query = $this->db->get_where('products',array('catid'=>"1' or '1'='1"));
           $query = $this->db->get_where('products',array('catid'=>$catid));
         }else {
           $query = $this->db->get('products');

application/views/header.php

@@ -153,9 +153,9 @@ function findProd(prod) {
 
         checkout(){
           var that = this;
-          $('.header-shopping').on('click', '.signIn-checkout', function(){
-            alert('暂未登录')
-          })
+          // $('.header-shopping').on('click', '.signIn-checkout', function(){
+          //   alert('暂未登录')
+          // })
 
           $('.header-shopping').on('click', '.checkout', function(){
             var shopingList = JSON.parse(localStorage.getItem("shopCar")) || [];
@@ -181,17 +181,28 @@ function findProd(prod) {
                 // console.log(123123)
               },
 
-              success: function(data) {
-                if(data.status == 2){
+              success: function(response) {
+                console.log('-===', response);
+                var qty = response.data.qty.split('-');
+                var price = response.data.price.split('-');
+                console.log(qty, price);
+                var total = 0.0;
+                if(qty.length == price.length){
+                    qty.forEach(function(e, i){
+                    total = total + e * price[i];
+                  });
+                }
+                console.log('total',parseFloat(total.toPrecision(12)));
+                if(response.status == 2){
                   $('.paypal-form').html(
                   `
                   <form action="https://www.sandbox.paypal.com/cgi-bin/webscr" method="post">
                     <input type="hidden" name="cmd" value="_cart">
                     <input type="hidden" name="upload" value="1">
                     <input type="hidden" name="business" value="[email protected]">
 
-                    <input type="hidden" name="item_name_1" value=${data.data.pid}>
-                    <input type="hidden" name="amount_1" value="${total.toFixed(2)}">
+                    <input type="hidden" name="item_name_1" value=${response.data.pid}>
+                    <input type="hidden" name="amount_1" value="${total}">
 
                     <input class="submit" type="submit" value="PayPal">
                     <input type="hidden" name="return" value="http://47.98.195.42/php/myOrder">