KVE-2019-0829 영카트 XSS 취약점 수정

2019-05-24 18:40:02 +09:00
parent 6b2e0e9b58
commit a0fa82eabe
10 changed files with 49 additions and 9 deletions
--- a/theme/basic/mobile/skin/member/basic/login.skin.php
+++ b/theme/basic/mobile/skin/member/basic/login.skin.php
@ -55,7 +55,7 @@ add_stylesheet('<link rel="stylesheet" href="'.$member_skin_url.'/style.css">',
        </p>

        <div id="guest_privacy">
-            <?php echo $default['de_guest_privacy']; ?>
+            <?php echo conv_content($default['de_guest_privacy'], $config['cf_editor']); ?>
        </div>

        <label for="agree">개인정보수집에 대한 내용을 읽었으며 이에 동의합니다.</label>
--- a/theme/basic/skin/member/basic/login.skin.php
+++ b/theme/basic/skin/member/basic/login.skin.php
@ -53,7 +53,7 @@ add_stylesheet('<link rel="stylesheet" href="'.$member_skin_url.'/style.css">',
        </p>

        <div id="guest_privacy">
-            <?php echo $default['de_guest_privacy']; ?>
+            <?php echo conv_content($default['de_guest_privacy'], $config['cf_editor']); ?>
        </div>

        <label for="agree">개인정보수집에 대한 내용을 읽었으며 이에 동의합니다.</label>