From 3cb0a953b724f8d74fc5550e33a42f1736d01968 Mon Sep 17 00:00:00 2001 From: zero Date: Fri, 28 Nov 2008 02:42:44 +0000 Subject: [PATCH] =?UTF-8?q?referer=EB=AA=A8=EB=93=88=EC=9D=98=20XSS=20?= =?UTF-8?q?=EC=95=85=EC=9A=A9=20=EC=97=AC=EC=A7=80=EA=B0=80=20=EC=9E=88?= =?UTF-8?q?=EB=8A=94=20=EC=BD=94=EB=93=9C=20=EC=88=98=EC=A0=95.=20(?= =?UTF-8?q?=EC=B5=9C=EC=98=81=EB=8C=80=EB=8B=98=20=EC=A0=9C=EB=B3=B4)?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit git-svn-id: http://xe-core.googlecode.com/svn/sandbox@5018 201d5d3c-b55e-5fd7-737f-ddc643e51545 --- modules/referer/referer.controller.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/modules/referer/referer.controller.php b/modules/referer/referer.controller.php index e1daabc7c..4baa0d4d9 100644 --- a/modules/referer/referer.controller.php +++ b/modules/referer/referer.controller.php @@ -21,7 +21,7 @@ $oDB = &DB::getInstance(); $oDB -> begin(); - $this->insertRefererLog($referer['host'], $_SERVER["HTTP_REFERER"]); + $this->insertRefererLog($referer['host'], removeHackTag($_SERVER["HTTP_REFERER"])); $this->deleteOlddatedRefererLogs(); $this->updateRefererStatistics($referer['host']); $oDB -> commit();