phpyun人才招聘cms注入及修复

api/alipay/alipayto.phprequire_once("alipay_config.php");require_once("class/alipay_service.php");require_once(dirname(dirname(dirname(__FILE__)))."/data/db.config.php");require_once(dirname(dirname(dirname(__FILE__)))."/include/mysql.class.php");$db = new mysql($db_config['dbhost'], $db_config['dbuser'], $db_config['dbpass'], $db_config['dbname'], ALL_PS, $db_config['charset']);$sql=$db->query("select * from `".$db_config["def"]."company_order` where `order_id`='$_POST[dingdan]'");//echo "select * from `".$db_config["def"]."company_order` where `order_id`='$_POST[dingdan]'";//注入点$row=mysql_fetch_array($sql);//exit();/*以下参数是需要通过下单时的订单数据传入进来获得*///必填参数$out_trade_no = $_POST['dingdan'];	//请与贵网站订单系统中的唯一订单号匹配$subject      = $_POST['dingdan'];		//订单名称，显示在支付宝收银台里的“商品名称”里，显示在支付宝的交易管理的“商品名称”的列表里。$body         = $row['order_remark'];		//订单描述、订单详细、订单备注，显示在支付宝收银台里的“商品描述”里$total_fee    = $row['order_price'];		//订单总金额，显示在支付宝收银台里的“应付总额”里