XSS 취약점 수정

2018-08-22 14:02:14 +09:00
parent ac5d6a4be7
commit b1fc952c76
12 changed files with 26 additions and 13 deletions
--- a/adm/sms_admin/num_book_update.php
+++ b/adm/sms_admin/num_book_update.php
@ -21,6 +21,8 @@ if ($w=='u') // 업데이트
    if (!strlen(trim($bk_name)))
        alert('이름을 입력해주세요');

+    $bk_name = strip_tags($bk_name);
+
    if ($bk_hp == '')
        alert('휴대폰번호만 입력 가능합니다.');
 /*