firstgarden/firstgarden-web-gnu
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Activity

영카트 CSRF 취약점 ( 17-00465 ) 수정

Browse Source
This commit is contained in:
thisgun
2017-07-20 19:56:43 +09:00
parent d7a3d245be
commit 1dc7b19552
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
mobile/shop/inicis/pay_approval.php
View File

@ -45,6 +45,8 @@ if($_REQUEST['P_STATUS'] != '00') {
// 결과를 배열로 변환
parse_str($return, $ret);
$PAY = array_map('trim', $ret);
$PAY = array_map('strip_tags', $PAY);
$PAY = array_map('get_search_string', $PAY);
if($PAY['P_STATUS'] != '00')
alert('오류 : '.iconv_utf8($PAY['P_RMESG1']).' 코드 : '.$PAY['P_STATUS'], $page_return_url);