firstgarden/firstgarden-web-gnu
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Activity

[보안패치] KVE-2021-1987_그누보드(영카트)preauth SQL Injection 취약점 해결, shop/event.php 를 거쳐서 접근하도록 수정

Browse Source
This commit is contained in:
kagla
2022-03-07 16:32:35 +09:00
parent 1a12ee8d2c
commit 4ad2f60c34
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
mobile/shop/event.php
View File

@ -1,4 +1,5 @@
<?php <?php
if (!defined('_GNUBOARD_')) exit; // 개별 페이지 접근 불가
include_once('./_common.php'); include_once('./_common.php');
$ev_id = isset($_GET['ev_id']) ? (int) $_GET['ev_id'] : 0; $ev_id = isset($_GET['ev_id']) ? (int) $_GET['ev_id'] : 0;