KVE-2018-0684 영카트 XSS 취약점 수정

2018-09-06 10:44:31 +09:00
parent ddbb2dd4e5
commit d21010276a
11 changed files with 11 additions and 10 deletions
--- a/adm/shop_admin/bannerform.php
+++ b/adm/shop_admin/bannerform.php
@ -74,7 +74,7 @@ include_once (G5_ADMIN_PATH.'/admin.head.php');
        <th scope="row"><label for="bn_alt">이미지 설명</label></th>
        <td>
            <?php echo help("img 태그의 alt, title 에 해당되는 내용입니다.\n배너에 마우스를 오버하면 이미지의 설명이 나옵니다."); ?>
-            <input type="text" name="bn_alt" value="<?php echo $bn['bn_alt']; ?>" id="bn_alt" class="frm_input" size="80">
+            <input type="text" name="bn_alt" value="<?php echo get_text($bn['bn_alt']); ?>" id="bn_alt" class="frm_input" size="80">
        </td>
    </tr>
    <tr>
--- a/adm/shop_admin/bannerformupdate.php
+++ b/adm/shop_admin/bannerformupdate.php
@ -35,6 +35,7 @@ if( $bn_bimg || $bn_bimg_name ){
 }

 $bn_url = clean_xss_tags($bn_url);
+$bn_alt = function_exists('clean_xss_attributes') ? clean_xss_attributes(strip_tags($bn_alt)) : strip_tags($bn_alt);

 if ($w=="")
 {
--- a/adm/shop_admin/bannerlist.php
+++ b/adm/shop_admin/bannerlist.php
@ -68,7 +68,7 @@ $from_record = ($page - 1) * $rows; // 시작 열을 구함

            $bn_img = "";
           
-            $bn_img .= '<img src="'.G5_DATA_URL.'/banner/'.$row['bn_id'].'" width="'.$width.'" alt="'.$row['bn_alt'].'">';
+            $bn_img .= '<img src="'.G5_DATA_URL.'/banner/'.$row['bn_id'].'" width="'.$width.'" alt="'.get_text($row['bn_alt']).'">';
        }

        switch($row['bn_device']) {