firstgarden/firstgarden-web-gnu
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Activity

[KVE-2020-0200,0202]영카트 다중취약점 수정

Browse Source
This commit is contained in:
thisgun
2020-04-24 15:43:26 +09:00
parent 87c8abdf25
commit 340602a5b8
4 changed files with 15 additions and 13 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
adm/shop_admin/categoryform.php
View File

@ -5,6 +5,8 @@ include_once(G5_EDITOR_LIB);
auth_check($auth[$sub_menu], "w");
$ca_id = isset($ca_id) ? preg_replace('/[^0-9a-z]/i', '', $ca_id) : '';
$sql_common = " from {$g5['g5_shop_category_table']} ";
if ($is_admin != 'super')
$sql_common .= " where ca_mb_id = '{$member['mb_id']}' ";

10
adm/shop_admin/itemdelete.inc.php
View File

@ -19,7 +19,7 @@ if (!function_exists("itemdelete")) {
// 상품 이미지 삭제
$dir_list = array();
for($i=1; $i<=10; $i++) {
$file = G5_DATA_PATH.'/item/'.$it['it_img'.$i];
$file = G5_DATA_PATH.'/item/'.clean_relative_paths($it['it_img'.$i]);
if(is_file($file) && $it['it_img'.$i]) {
@unlink($file);
$dir = dirname($file);
@ -78,9 +78,9 @@ if (!function_exists("itemdelete")) {
else
$data_path = $p['path'];
$destfile = G5_PATH.$data_path;
$destfile = G5_PATH.clean_relative_paths($data_path);
if(is_file($destfile))
if(is_file($destfile) && preg_match('/(\.(gif|jpe?g|png))$/i', $destfile))
@unlink($destfile);
}
@ -95,9 +95,9 @@ if (!function_exists("itemdelete")) {
else
$data_path = $p['path'];
$destfile = G5_PATH.$data_path;
$destfile = G5_PATH.clean_relative_paths($data_path);
if(is_file($destfile))
if(is_file($destfile) && preg_match('/(\.(gif|jpe?g|png))$/i', $destfile))
@unlink($destfile);
}
//------------------------------------------------------------------------