From d6d6773fbbfdf8f1bfdcb6e73ef148b0aa52af56 Mon Sep 17 00:00:00 2001
From: thisgun <thisgun@naver.com>
Date: Fri, 3 Apr 2020 12:27:16 +0900
Subject: [PATCH] =?UTF-8?q?=EA=B7=B8=EB=88=84=EB=B3=B4=EB=93=9C=20XSS=20?=
 =?UTF-8?q?=EC=B7=A8=EC=95=BD=EC=A0=90=20=EC=88=98=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 bbs/password.php | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/bbs/password.php b/bbs/password.php
index 5f6c4672e..54209e9d3 100644
--- a/bbs/password.php
+++ b/bbs/password.php
@@ -3,6 +3,10 @@ include_once('./_common.php');
 
 $g5['title'] = '비밀번호 입력';
 
+if( isset($comment_id) ){
+    $comment_id = (int) $comment_id;
+}
+
 switch ($w) {
     case 'u' :
         $action = G5_HTTP_BBS_URL.'/write.php';