firstgarden/firstgarden-web-gnu
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Activity

SQL Injection 및 관리자가 게시글 수정때 정보 반영되도록 수정

Browse Source
This commit is contained in:
chicpro
2014-10-24 11:01:34 +09:00
parent 36e6d53374
commit 50c42776e7
2 changed files with 19 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
bbs/write.php
View File

@ -294,10 +294,10 @@ $homepage = "";
if ($w == "" || $w == "r") {
if ($is_member) {
if (isset($write['wr_name'])) {
$name = get_text(cut_str($write['wr_name'],20));
$name = get_text(cut_str(stripslashes($write['wr_name']),20));
}
$email = $member['mb_email'];
$homepage = get_text($member['mb_homepage']);
$email = get_email_address($member['mb_email']);
$homepage = get_text(stripslashes($member['mb_homepage']));
}
}
@ -318,9 +318,9 @@ if ($w == '') {
}
}
$name = get_text(cut_str($write['wr_name'],20));
$name = get_text(cut_str(stripslashes($write['wr_name']),20));
$email = get_email_address($write['wr_email']);
$homepage = get_text($write['wr_homepage']);
$homepage = get_text(stripslashes($write['wr_homepage']));
for ($i=1; $i<=G5_LINK_COUNT; $i++) {
$write['wr_link'.$i] = get_text($write['wr_link'.$i]);