修复最佳评论越权问题

QiangLi826 · LinkinStars · commit 61d9bf34d3f9 · 2025-12-29T10:24:01.000+08:00
在AcceptAnswer方法中添加了安全检查，确保要设置为最佳答案的回答确实属于该问题。
这可以防止攻击者将其他问题的回答设置为当前问题的最佳答案。

安全问题：越权设置最佳评论
修复方法：验证acceptedAnswerInfo.QuestionID == req.QuestionID
diff --git a/internal/service/content/answer_service.go b/internal/service/content/answer_service.go
@@ -455,6 +455,11 @@ func (as *AnswerService) AcceptAnswer(ctx context.Context, req *schema.AcceptAns
 		if !exist {
 			return errors.BadRequest(reason.AnswerNotFound)
 		}
+
+		// check answer belong to question
+		if acceptedAnswerInfo.QuestionID != req.QuestionID {
+			return errors.BadRequest(reason.AnswerNotFound)
+		}
 		acceptedAnswerInfo.ID = uid.DeShortID(acceptedAnswerInfo.ID)
 	}
 

Original file line number	Diff line number	Diff line change
`@@ -455,6 +455,11 @@ func (as AnswerService) AcceptAnswer(ctx context.Context, req schema.AcceptAns`
`455`	`455`	`if !exist {`
`456`	`456`	`return errors.BadRequest(reason.AnswerNotFound)`
`457`	`457`	`}`
	`458`	`+`
	`459`	`+ // check answer belong to question`
	`460`	`+ if acceptedAnswerInfo.QuestionID != req.QuestionID {`
	`461`	`+ return errors.BadRequest(reason.AnswerNotFound)`
	`462`	`+ }`
`458`	`463`	`acceptedAnswerInfo.ID = uid.DeShortID(acceptedAnswerInfo.ID)`
`459`	`464`	`}`
`460`	`465`