XSS 취약점(16-223) 수정

gnuboard · Mar 9, 2016 · 8ae36f4 · 8ae36f4
1 parent 479ef66
commit 8ae36f4
Showing 1 changed file with 2 additions and 2 deletions.
diff --git a/adm/shop_admin/orderform.php b/adm/shop_admin/orderform.php
@@ -397,7 +397,7 @@
                 </tr>
                 <tr>
                     <th scope="row">입금자</th>
-                    <td><?php echo $od['od_deposit_name']; ?></td>
+                    <td><?php echo get_text($od['od_deposit_name']); ?></td>
                 </tr>
                 <tr>
                     <th scope="row">입금확인일시</th>
@@ -686,7 +686,7 @@
                         <label for="od_sms_ipgum_check">SMS 입금 문자전송</label>
                         <br>
                         <?php } ?>
-                        <input type="text" name="od_deposit_name" value="<?php echo $od['od_deposit_name']; ?>" id="od_deposit_name" class="frm_input">
+                        <input type="text" name="od_deposit_name" value="<?php echo get_text($od['od_deposit_name']); ?>" id="od_deposit_name" class="frm_input">
                     </td>
                 </tr>
                 <tr>