From d5e6a07dda240a2ec3e0e79328637f0f43f07c68 Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@gmail.com>
Date: Tue, 29 Jul 2014 16:33:19 +0900
Subject: [PATCH] =?UTF-8?q?xss=20=EB=8C=80=EC=9D=91=20=EC=BD=94=EB=93=9C?=
 =?UTF-8?q?=20=EC=B6=94=EA=B0=80?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 common.php | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/common.php b/common.php
index 857c8a949..b689a7791 100644
--- a/common.php
+++ b/common.php
@@ -327,7 +327,7 @@ if (isset($_REQUEST['wr_id'])) {
 }
 
 if (isset($_REQUEST['bo_table'])) {
-    $bo_table = trim($_REQUEST['bo_table']);
+    $bo_table = preg_replace('/[^a-z0-9_]/i', '', trim($_REQUEST['bo_table']));
     $bo_table = substr($bo_table, 0, 20);
 } else {
     $bo_table = '';
@@ -335,7 +335,7 @@ if (isset($_REQUEST['bo_table'])) {
 
 // URL ENCODING
 if (isset($_REQUEST['url'])) {
-    $url = trim($_REQUEST['url']);
+    $url = strip_tags(trim($_REQUEST['url']));
     $urlencode = urlencode($url);
 } else {
     $url = '';
@@ -348,7 +348,7 @@ if (isset($_REQUEST['url'])) {
 
 if (isset($_REQUEST['gr_id'])) {
     if (!is_array($_REQUEST['gr_id'])) {
-        $gr_id = trim($_REQUEST['gr_id']);
+        $gr_id = preg_replace('/[^a-z0-9_]/i', '', trim($_REQUEST['gr_id']));
     }
 } else {
     $gr_id = '';