From 9cb912be7557bd45d9d15a3a80396f18e1498d20 Mon Sep 17 00:00:00 2001
From: bohung <bohung@rulingcom.com>
Date: Mon, 24 Oct 2022 18:04:57 +0800
Subject: [PATCH] Fix vulnerable.

---
 app/controllers/page_contents_controller.rb | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/app/controllers/page_contents_controller.rb b/app/controllers/page_contents_controller.rb
index c14962c..c5a56b9 100644
--- a/app/controllers/page_contents_controller.rb
+++ b/app/controllers/page_contents_controller.rb
@@ -3,14 +3,14 @@ class PageContentsController < OrbitAdminController
   def index
     params = OrbitHelper.params
     if params["wiki"].present?
-      page = WikiPage.where(:uid => params["wiki"]).first
+      page = WikiPage.where(:uid => params["wiki"].to_s).first
       page.view_count += 1
       page.save
       name = page.title rescue ""
       html = page.content rescue ""
       url_to_edit = OrbitHelper.user_can_edit?(page) ? "/admin/wiki_pages/#{page.id}/edit?page_id=#{page.page.id.to_s}" : ""
     else
-      page = Page.where(:page_id => params[:page_id]).first
+      page = Page.where(:page_id => params[:page_id].to_s).first
       name = page.name rescue ""
       html = page.page_contexts.order(:version=>-1).first.content rescue ""
       url_to_edit = OrbitHelper.user_can_edit?(page) ? "/admin/page_contents/new?page_id=#{page.id.to_s}" : ""