KVE-2018-1316 취약점 다시 재 수정

gnuboard · Dec 18, 2018 · 061e73c · 061e73c
1 parent c028d34
commit 061e73c
Showing 1 changed file with 4 additions and 2 deletions.
diff --git a/lib/common.lib.php b/lib/common.lib.php
@@ -2885,10 +2885,12 @@ function clean_xss_tags($str)
 {
     $str_len = strlen($str);
 
+    $i = 0;
     while($i <= $str_len){
         $result = preg_replace('#</*(?:applet|b(?:ase|gsound|link)|embed|frame(?:set)?|i(?:frame|layer)|l(?:ayer|ink)|meta|object|s(?:cript|tyle)|title|xml)[^>]*+>#i', '', $str);
-        if((string)$result === (string)$str)
-            break;
+
+        if((string)$result === (string)$str) break;
+
         $str = $result;
         $i++;
     }