From a722af88e095544474250df9ec09b037e4a054c9 Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@gmail.com>
Date: Tue, 16 Dec 2014 16:07:00 +0900
Subject: [PATCH] =?UTF-8?q?REQUEST=5FURI=EB=A5=BC=20=EC=9D=B4=EC=9A=A9?=
 =?UTF-8?q?=ED=95=9C=20SQL=20Injection=20=EC=98=A4=EB=A5=98=20=EC=88=98?=
 =?UTF-8?q?=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 head.sub.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/head.sub.php b/head.sub.php
index 027150bf6..587d438c8 100644
--- a/head.sub.php
+++ b/head.sub.php
@@ -17,8 +17,8 @@ else {
 // 게시판 제목에 ' 포함되면 오류 발생
 $g5['lo_location'] = addslashes($g5['title']);
 if (!$g5['lo_location'])
-    $g5['lo_location'] = $_SERVER['REQUEST_URI'];
-$g5['lo_url'] = $_SERVER['REQUEST_URI'];
+    $g5['lo_location'] = addslashes($_SERVER['REQUEST_URI']);
+$g5['lo_url'] = addslashes($_SERVER['REQUEST_URI']);
 if (strstr($g5['lo_url'], '/'.G5_ADMIN_DIR.'/') || $is_admin == 'super') $g5['lo_url'] = '';
 
 /*