관리자 CSRF 취약점 수정2

2015-11-24 11:09:54 +09:00
parent 32d09cff7d
commit 33e9d1e1d0
16 changed files with 43 additions and 33 deletions
--- a/adm/sms_admin/config_update.php
+++ b/adm/sms_admin/config_update.php
@ -6,6 +6,8 @@ auth_check($auth[$sub_menu], "w");

 check_demo();

+check_admin_token();
+
 $g5['title'] = "SMS 기본설정";

 // 회신번호 체크
--- a/adm/sms_admin/sms_write_send.php
+++ b/adm/sms_admin/sms_write_send.php
@ -4,6 +4,8 @@ include_once("./_common.php");

 auth_check($auth[$sub_menu], "w");

+check_admin_token();
+
 $g5['title'] = "문자전송중";

 $wr_reply   = preg_replace('#[^0-9\-]#', '', trim($wr_reply));