firstgarden/firstgarden-web-gnu
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Activity

영카트 Reflected XSS 취약점(17-560) 수정

Browse Source
This commit is contained in:
thisgun
2017-09-20 20:07:11 +09:00
parent 25d280b06d
commit 6ea332445f
4 changed files with 11 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
adm/shop_admin/sale1date.php
View File

@ -4,6 +4,9 @@ include_once('./_common.php');
auth_check($auth[$sub_menu], "r");
$fr_date = preg_replace('/[^0-9]/i', '', $fr_date);
$to_date = preg_replace('/[^0-9]/i', '', $to_date);
$fr_date = preg_replace("/([0-9]{4})([0-9]{2})([0-9]{2})/", "\\1-\\2-\\3", $fr_date);
$to_date = preg_replace("/([0-9]{4})([0-9]{2})([0-9]{2})/", "\\1-\\2-\\3", $to_date);

3
adm/shop_admin/sale1month.php
View File

@ -4,6 +4,9 @@ include_once('./_common.php');
auth_check($auth[$sub_menu], "r");
$fr_month = preg_replace('/[^0-9]/i', '', $fr_month);
$to_month = preg_replace('/[^0-9]/i', '', $to_month);
$fr_month = preg_replace("/([0-9]{4})([0-9]{2})/", "\\1-\\2", $fr_month);
$to_month = preg_replace("/([0-9]{4})([0-9]{2})/", "\\1-\\2", $to_month);

2
adm/shop_admin/sale1today.php
View File

@ -4,6 +4,8 @@ include_once('./_common.php');
auth_check($auth[$sub_menu], "r");
$date = preg_replace('/[^0-9]/i', '', $date);
$date = preg_replace("/([0-9]{4})([0-9]{2})([0-9]{2})/", "\\1-\\2-\\3", $date);
$g5['title'] = "$date 일 매출현황";

3
adm/shop_admin/sale1year.php
View File

@ -4,6 +4,9 @@ include_once('./_common.php');
auth_check($auth[$sub_menu], "r");
$fr_year = preg_replace('/[^0-9]/i', '', $fr_year);
$to_year = preg_replace('/[^0-9]/i', '', $to_year);
$g5['title'] = $fr_year.' ~ '.$to_year.' 연간 매출현황';
include_once (G5_ADMIN_PATH.'/admin.head.php');