From b2bfe117438e875bd24d523a1a19e11802cdfcb8 Mon Sep 17 00:00:00 2001 From: chicpro Date: Tue, 14 Jul 2015 13:58:19 +0900 Subject: [PATCH] =?UTF-8?q?XSS=20=EC=B7=A8=EC=95=BD=EC=A0=90=20=EC=88=98?= =?UTF-8?q?=EC=A0=95?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- bbs/register_form.php | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/bbs/register_form.php b/bbs/register_form.php index e6583e111..4729c7692 100644 --- a/bbs/register_form.php +++ b/bbs/register_form.php @@ -30,9 +30,6 @@ if ($w == "") { alert('개인정보처리방침안내의 내용에 동의하셔야 회원가입 하실 수 있습니다.', G5_BBS_URL.'/register.php'); } - $agree = preg_replace('#[^0-9]#', '', $_POST['agree']); - $agree2 = preg_replace('#[^0-9]#', '', $_POST['agree2']); - $member['mb_birth'] = ''; $member['mb_sex'] = ''; $member['mb_name'] = ''; @@ -118,6 +115,9 @@ $req_nick = !isset($member['mb_nick_date']) || (isset($member['mb_nick_date']) & $required = ($w=='') ? 'required' : ''; $readonly = ($w=='u') ? 'readonly' : ''; +$agree = preg_replace('#[^0-9]#', '', $agree); +$agree2 = preg_replace('#[^0-9]#', '', $agree2); + // add_javascript('js 구문', 출력순서); 숫자가 작을 수록 먼저 출력됨 if ($config['cf_use_addr']) add_javascript(G5_POSTCODE_JS, 0); //다음 주소 js