Skip to content
Permalink
Browse files
$kind 변수를 이용한 XSS 취약점 수정 (Pocas님,211214)
  • Loading branch information
kagla committed Dec 14, 2021
1 parent 796b6d9 commit 2e81619ea87bc9c0b4a073d8df3c7693a6fdbf0d
Showing with 3 additions and 1 deletion.
  1. +3 −1 bbs/memo.php
@@ -15,8 +15,10 @@
$unkind = 'send';
else if ($kind == 'send')
$unkind = 'recv';
else
else {
$kind = clean_xss_tags(trim($kind));
alert(''.$kind .'값을 넘겨주세요.');
}

if ($page < 1) { $page = 1; } // 페이지가 없으면 첫 페이지 (1 페이지)

2 comments on commit 2e81619

@P0cas
Copy link

@P0cas P0cas commented on 2e81619 Dec 14, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks you for to patch. and Can I assign a CVE and publish it?

@gnuboard
Copy link
Collaborator

@gnuboard gnuboard commented on 2e81619 Dec 14, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks you for to patch. and Can I assign a CVE and publish it?Can I assign a CVE and publish it?

You can assign the CVE.

Please sign in to comment.