KVE-2019-0001, 0002, 0042, 0050 그누보드 다중 취약점 수정

2019-01-28 10:07:29 +09:00
parent f1a69ff7a4
commit 31bf6e94ad
5 changed files with 13 additions and 11 deletions
--- a/adm/sms_admin/num_book_write.php
+++ b/adm/sms_admin/num_book_write.php
@ -121,7 +121,7 @@ include_once(G5_ADMIN_PATH."/admin.head.php");
    <tr>
        <th scope="row"><label for="bk_memo">메모</label></th>
        <td>
-            <textarea name="bk_memo" id="bk_memo"><?php echo $write['bk_memo']?></textarea>
+            <textarea name="bk_memo" id="bk_memo"><?php echo html_purifier($write['bk_memo']); ?></textarea>
        </td>
    </tr>
    </tbody>