firstgarden/firstgarden-web-gnu
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Activity

주문폼을 이용한 XSS 대응 코드 추가

Browse Source
This commit is contained in:
chicpro
2014-11-10 15:00:52 +09:00
parent 85bfd17c59
commit 51b8f79c2b
2 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
mobile/shop/orderformupdate.php
View File

@ -432,6 +432,7 @@ $od_b_addr2 = clean_xss_tags($od_b_addr2);
$od_b_addr3 = clean_xss_tags($od_b_addr3); $od_b_addr3 = clean_xss_tags($od_b_addr3);
$od_b_addr_jibeon = preg_match("/^(N|R)$/", $od_b_addr_jibeon) ? $od_b_addr_jibeon : ''; $od_b_addr_jibeon = preg_match("/^(N|R)$/", $od_b_addr_jibeon) ? $od_b_addr_jibeon : '';
$od_memo = clean_xss_tags($od_memo); $od_memo = clean_xss_tags($od_memo);
$od_deposit_name = clean_xss_tags($od_deposit_name);
// 주문서에 입력 // 주문서에 입력
$sql = " insert {$g5['g5_shop_order_table']} $sql = " insert {$g5['g5_shop_order_table']}

1
shop/orderformupdate.php
View File

@ -426,6 +426,7 @@ $od_b_addr2 = clean_xss_tags($od_b_addr2);
$od_b_addr3 = clean_xss_tags($od_b_addr3); $od_b_addr3 = clean_xss_tags($od_b_addr3);
$od_b_addr_jibeon = preg_match("/^(N|R)$/", $od_b_addr_jibeon) ? $od_b_addr_jibeon : ''; $od_b_addr_jibeon = preg_match("/^(N|R)$/", $od_b_addr_jibeon) ? $od_b_addr_jibeon : '';
$od_memo = clean_xss_tags($od_memo); $od_memo = clean_xss_tags($od_memo);
$od_deposit_name = clean_xss_tags($od_deposit_name);
// 주문서에 입력 // 주문서에 입력
$sql = " insert {$g5['g5_shop_order_table']} $sql = " insert {$g5['g5_shop_order_table']}