firstgarden/firstgarden-web-gnu
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Activity

[KVE-2021-0029,0030]영카트_XSS_취약점 수정

Browse Source
This commit is contained in:
thisgun
2021-04-05 17:01:29 +09:00
parent dcd7a725d5
commit 17e9f13275
4 changed files with 100 additions and 99 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
adm/shop_admin/itemformupdate.php
View File

@ -281,8 +281,8 @@ if($supply_count) {
$value_array = array();
$count_ii_article = (isset($_POST['ii_article']) && is_array($_POST['ii_article'])) ? count($_POST['ii_article']) : 0;
for($i=0; $i<$count_ii_article; $i++) {
$key = isset($_POST['ii_article'][$i]) ? $_POST['ii_article'][$i] : '';
$val = isset($_POST['ii_value'][$i]) ? $_POST['ii_value'][$i] : '';
$key = isset($_POST['ii_article'][$i]) ? strip_tags($_POST['ii_article'][$i], '<br><span><strong><b>') : '';
$val = isset($_POST['ii_value'][$i]) ? strip_tags($_POST['ii_value'][$i], '<br><span><strong><b>') : '';
$value_array[$key] = $val;
}
$it_info_value = addslashes(serialize($value_array));