firstgarden/firstgarden-web-gnu
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Activity

커맨드 인젝션 취약점(16-418 419) 수정

Browse Source
This commit is contained in:
chicpro
2016-06-13 17:47:41 +09:00
parent dfc2c110d6
commit e724ef7291
1 changed files with 3 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
plugin/okname/hpcert.config.php
View File

@ -33,6 +33,8 @@ else
$clientDomain = $_SERVER['SERVER_NAME']; $clientDomain = $_SERVER['SERVER_NAME'];
unset($p); unset($p);
$clientDomain = escapeshellarg($clientDomain);
$rsv1 = '0'; // 예약 항목 $rsv1 = '0'; // 예약 항목
$rsv2 = '0'; // 예약 항목 $rsv2 = '0'; // 예약 항목
@ -78,5 +80,5 @@ if($config['cf_cert_use'] == 2) {
// ######################################################################## // ########################################################################
// # 리턴 URL 설정 // # 리턴 URL 설정
// ######################################################################## // ########################################################################
$returnUrl = G5_OKNAME_URL.'/hpcert2.php'; // 본인인증 완료후 리턴될 URL (도메인 포함 full path) $returnUrl = escapeshellarg(G5_OKNAME_URL.'/hpcert2.php'); // 본인인증 완료후 리턴될 URL (도메인 포함 full path)
?> ?>