댓글 수정 CSRF 취약점 수정
This commit is contained in:
14
bbs/ajax.comment_token.php
Normal file
14
bbs/ajax.comment_token.php
Normal file
@ -0,0 +1,14 @@
|
||||
<?php
|
||||
include_once('./_common.php');
|
||||
include_once(G5_LIB_PATH.'/json.lib.php');
|
||||
|
||||
$ss_name = 'ss_comment_token';
|
||||
|
||||
set_session($ss_name, '');
|
||||
|
||||
$token = _token();
|
||||
|
||||
set_session($ss_name, $token);
|
||||
|
||||
die(json_encode(array('token'=>$token)));
|
||||
?>
|
||||
Reference in New Issue
Block a user