From e9023340ddd2d94f108d7b3b4ea10dc277583a70 Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Wed, 20 Jan 2016 14:46:13 +0900
Subject: [PATCH] =?UTF-8?q?XSS=20=EC=B7=A8=EC=95=BD=EC=A0=90(16-060)=20?=
 =?UTF-8?q?=EC=88=98=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 bbs/member_confirm.php | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/bbs/member_confirm.php b/bbs/member_confirm.php
index 9f214f289..e5abe169e 100644
--- a/bbs/member_confirm.php
+++ b/bbs/member_confirm.php
@@ -19,6 +19,8 @@ $url = clean_xss_tags($_GET['url']);
 // url 체크
 check_url_host($url);
 
+$url = get_text($url);
+
 include_once($member_skin_path.'/member_confirm.skin.php');
 
 include_once('./_tail.sub.php');