Skip to content
Permalink
Browse files

KVE-2019-0567, 0657 XSS 취약점 수정

  • Loading branch information...
thisgun committed Mar 13, 2019
1 parent 2edb3a8 commit 40695f4f43be8824d923beaf604913c9fa0849a8
Showing with 6 additions and 0 deletions.
  1. +2 −0 mobile/shop/event.php
  2. +2 −0 shop/event.php
  3. +2 −0 shop/orderform.php
@@ -1,6 +1,8 @@
<?php
include_once('./_common.php');
$ev_id = (int) $ev_id;
$sql = " select * from {$g5['g5_shop_event_table']}
where ev_id = '$ev_id'
and ev_use = 1 ";
@@ -1,6 +1,8 @@
<?php
include_once('./_common.php');
$ev_id = (int) $ev_id;
if (G5_IS_MOBILE) {
include_once(G5_MSHOP_PATH.'/event.php');
return;
@@ -7,6 +7,8 @@
// 주문상품 재고체크 js 파일
add_javascript('<script src="'.G5_JS_URL.'/shop.order.js"></script>', 0);
$sw_direct = preg_replace('/[^a-z0-9_]/i', '', $sw_direct);
// 모바일 주문인지
$is_mobile_order = is_mobile();

0 comments on commit 40695f4

Please sign in to comment.
You can’t perform that action at this time.