그누보드 open redirect 취약점 수정

2024-07-03 12:50:12 +09:00
parent 14ffe72574
commit c6b58bb16b
3 changed files with 1 additions and 4 deletions
--- a/bbs/member_confirm.php
+++ b/bbs/member_confirm.php
@ -4,8 +4,6 @@ include_once('./_common.php');
 if ($is_guest)
    alert('로그인 한 회원만 접근하실 수 있습니다.', G5_BBS_URL.'/login.php');

-$url = isset($_GET['url']) ? clean_xss_tags($_GET['url']) : '';
-
 while (1) {
    $tmp = preg_replace('/&#[^;]+;/', '', $url);
    if ($tmp == $url) break;