dedecms支付模块注入漏洞修复

$order_sn = trim($_GET['out_trade_no']);

$order_sn = trim($_GET['out_trade_no']);
$order_sn = htmlspecialchars($order_sn);