firstgarden/firstgarden-web-gnu
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Activity

[KVE-2025-0828]영카트 취약점 수정

Browse Source
This commit is contained in:
thisgun
2025-11-14 07:30:47 +00:00
parent 3432497efe
commit f2ab751e5f
4 changed files with 12 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
adm/shop_admin/configformupdate.php
View File

@ -64,6 +64,8 @@ foreach($check_skin_keys as $key){
if( isset($_POST[$key]) && preg_match('#\.+(\/|\\\)#', $_POST[$key]) ){ if( isset($_POST[$key]) && preg_match('#\.+(\/|\\\)#', $_POST[$key]) ){
alert('스킨설정에 유효하지 문자가 포함되어 있습니다.'); alert('스킨설정에 유효하지 문자가 포함되어 있습니다.');
} }
$$key = $_POST[$key] = sql_real_escape_string($_POST[$key]);
} }
// 현금영수증 발급수단 // 현금영수증 발급수단

5
shop/naverpay/naverpay_order.php
View File

@ -3,6 +3,8 @@ include_once('./_common.php');
include_once(G5_SHOP_PATH.'/settle_naverpay.inc.php'); include_once(G5_SHOP_PATH.'/settle_naverpay.inc.php');
include_once(G5_LIB_PATH.'/naverpay.lib.php'); include_once(G5_LIB_PATH.'/naverpay.lib.php');
if (!(defined('G5_SHOP_USE_NAVERPAY') && G5_SHOP_USE_NAVERPAY)) return;
$pattern = '#[/\'\"%=*\#\(\)\|\+\&\!\$~\{\}\[\]`;:\?\^\,]#'; $pattern = '#[/\'\"%=*\#\(\)\|\+\&\!\$~\{\}\[\]`;:\?\^\,]#';
$post_naverpay_form = isset($_POST['naverpay_form']) ? clean_xss_tags($_POST['naverpay_form']) : ''; $post_naverpay_form = isset($_POST['naverpay_form']) ? clean_xss_tags($_POST['naverpay_form']) : '';
@ -98,7 +100,8 @@ for($i=0; $i<$count; $i++) {
$opt_count = (isset($_POST['io_id'][$it_id]) && is_array($_POST['io_id'][$it_id])) ? count($_POST['io_id'][$it_id]) : 0; $opt_count = (isset($_POST['io_id'][$it_id]) && is_array($_POST['io_id'][$it_id])) ? count($_POST['io_id'][$it_id]) : 0;
if( ! $it_id) continue; if( ! $it_id) continue;
if (!preg_match('/^[a-zA-Z0-9_-]+$/', $it_id)) continue;
if($opt_count && $_POST['io_type'][$it_id][0] != 0) if($opt_count && $_POST['io_type'][$it_id][0] != 0)
return_error2json('상품의 선택옵션을 선택해 주십시오.'); return_error2json('상품의 선택옵션을 선택해 주십시오.');

4
shop/naverpay/naverpay_wish.php
View File

@ -3,6 +3,8 @@ include_once('./_common.php');
include_once(G5_SHOP_PATH.'/settle_naverpay.inc.php'); include_once(G5_SHOP_PATH.'/settle_naverpay.inc.php');
include_once(G5_LIB_PATH.'/naverpay.lib.php'); include_once(G5_LIB_PATH.'/naverpay.lib.php');
if (!(defined('G5_SHOP_USE_NAVERPAY') && G5_SHOP_USE_NAVERPAY)) return;
$count = (isset($_POST['it_id']) && is_array($_POST['it_id'])) ? count($_POST['it_id']) : 0; $count = (isset($_POST['it_id']) && is_array($_POST['it_id'])) ? count($_POST['it_id']) : 0;
if ($count < 1) if ($count < 1)
@ -13,6 +15,8 @@ $item = '';
for($i=0; $i<$count; $i++) { for($i=0; $i<$count; $i++) {
$it_id = isset($_POST['it_id']) ? $_POST['it_id'][$i] : ''; $it_id = isset($_POST['it_id']) ? $_POST['it_id'][$i] : '';
if (!preg_match('/^[a-zA-Z0-9_-]+$/', $it_id)) continue;
// 상품정보 // 상품정보
$it = get_shop_item($it_id, true); $it = get_shop_item($it_id, true);

2
shop/settle_naverpay.inc.php
View File

@ -15,6 +15,8 @@ if(basename($_SERVER['SCRIPT_NAME']) == 'item.php') {
return; return;
} }
define('G5_SHOP_USE_NAVERPAY', 1);
$naverpay_button_js = ''; $naverpay_button_js = '';
$is_mobile_order = is_mobile(); $is_mobile_order = is_mobile();