[KVE-2022-2036] Gnuboard5 관리자페이지 내 Stored XSS 취약점 수정

2022-12-01 15:22:48 +09:00
parent 21dc36199f
commit 97a8352117
8 changed files with 12 additions and 10 deletions
--- a/adm/mail_select_list.php
+++ b/adm/mail_select_list.php
@ -121,7 +121,7 @@ require_once './admin.head.php';
                <?php } ?>
            </tbody>
        </table>
-        <textarea name="ma_list" style="display:none"><?php echo $ma_list ?></textarea>
+        <textarea name="ma_list" style="display:none"><?php echo html_purifier($ma_list); ?></textarea>
    </div>

    <div class="btn_confirm01 btn_confirm">