취약점 보안 및 코드 개선

2019-02-14 09:56:47 +09:00
parent d0eb0601ad
commit 9c03cd85b6
5 changed files with 26 additions and 19 deletions
--- a/adm/boardgroupmember_update.php
+++ b/adm/boardgroupmember_update.php
@ -48,7 +48,7 @@ else if ($w == 'd' || $w == 'ld')
    check_admin_token();

    for($i=0; $i<$count; $i++) {
-        $gm_id = $_POST['chk'][$i];
+        $gm_id = (int) $_POST['chk'][$i];
        $sql = " select * from {$g5['group_member_table']} where gm_id = '$gm_id' ";
        $gm = sql_fetch($sql);
        if (!$gm['gm_id']) {