[KVE-2019-1571,1573,1578,1580]그누보드 XSS 취약점 수정

2020-02-13 13:48:37 +09:00
parent 992d3d93f4
commit 120d8cf564
10 changed files with 17 additions and 17 deletions
--- a/adm/mail_form.php
+++ b/adm/mail_form.php
@ -42,7 +42,7 @@ include_once('./admin.head.php');
    <tbody>
    <tr>
        <th scope="row"><label for="ma_subject">메일 제목<strong class="sound_only">필수</strong></label></th>
-        <td><input type="text" name="ma_subject" value="<?php echo $ma['ma_subject'] ?>" id="ma_subject" required class="required frm_input" size="100"></td>
+        <td><input type="text" name="ma_subject" value="<?php echo get_sanitize_input($ma['ma_subject']); ?>" id="ma_subject" required class="required frm_input" size="100"></td>
    </tr>
    <tr>
        <th scope="row"><label for="ma_content">메일 내용<strong class="sound_only">필수</strong></label></th>