diff --git a/application/admin/controller/general/Attachment.php b/application/admin/controller/general/Attachment.php
index 6f5a1696..b242bf59 100644
--- a/application/admin/controller/general/Attachment.php
+++ b/application/admin/controller/general/Attachment.php
@@ -26,6 +26,8 @@ class Attachment extends Backend
      */
     public function index()
     {
+        //设置过滤方法
+        $this->request->filter(['strip_tags']);
         if ($this->request->isAjax())
         {
             list($where, $sort, $order, $offset, $limit) = $this->buildparams();
diff --git a/application/admin/controller/general/Profile.php b/application/admin/controller/general/Profile.php
index 3189d7c8..bf450add 100644
--- a/application/admin/controller/general/Profile.php
+++ b/application/admin/controller/general/Profile.php
@@ -20,6 +20,8 @@ class Profile extends Backend
      */
     public function index()
     {
+        //设置过滤方法
+        $this->request->filter(['strip_tags']);
         if ($this->request->isAjax())
         {
             $model = model('AdminLog');
diff --git a/application/common/controller/Backend.php b/application/common/controller/Backend.php
index 7c5b56d9..29f7f03f 100644
--- a/application/common/controller/Backend.php
+++ b/application/common/controller/Backend.php
@@ -202,7 +202,7 @@ class Backend extends Controller
         $relationSearch = is_null($relationSearch) ? $this->relationSearch : $relationSearch;
         $search = $this->request->get("search", '');
         $filter = $this->request->get("filter", '');
-        $op = $this->request->get("op", '');
+        $op = $this->request->get("op", '', 'trim');
         $sort = $this->request->get("sort", "id");
         $order = $this->request->get("order", "DESC");
         $offset = $this->request->get("offset", 0);