From f2fb4f5803ebdbbf9db9e36b1c495cd14ba95fd0 Mon Sep 17 00:00:00 2001 From: zero Date: Wed, 22 Oct 2008 04:27:01 +0000 Subject: [PATCH] =?UTF-8?q?=EB=B3=B4=EC=95=88=EC=B7=A8=EC=95=BD=EC=A0=90?= =?UTF-8?q?=EC=9D=84=20=EC=9C=84=ED=95=B4=EC=84=9C=20onclick=EB=93=B1?= =?UTF-8?q?=EC=9D=98=20event=EB=A5=BC=20=5Fon=EB=8F=99=EC=9E=91=EC=9C=BC?= =?UTF-8?q?=EB=A1=9C=20=EB=B0=94=EA=BE=BC=20=EA=B2=83=20=EB=95=8C=EB=AC=B8?= =?UTF-8?q?=EC=97=90=20=EB=8F=99=EC=9E=91=ED=95=98=EC=A7=80=20=EC=95=8A?= =?UTF-8?q?=EB=8D=98=20=EC=83=88=EC=B0=BD=20=EB=9D=84=EC=9A=B0=EA=B8=B0?= =?UTF-8?q?=EC=97=90=20=EB=8C=80=ED=95=B4=EC=84=9C=EB=A7=8C=20=EC=9B=90?= =?UTF-8?q?=EB=9E=98=EB=8D=B0=EB=A1=9C=20=EB=8F=8C=EB=A0=A4=20=EB=86=93?= =?UTF-8?q?=EB=8A=94=20=EC=BD=94=EB=93=9C=20=EC=B6=94=EA=B0=80?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit git-svn-id: http://xe-core.googlecode.com/svn/sandbox@4672 201d5d3c-b55e-5fd7-737f-ddc643e51545 --- modules/document/document.item.php | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/modules/document/document.item.php b/modules/document/document.item.php index ca11f4694..61e3edaf2 100644 --- a/modules/document/document.item.php +++ b/modules/document/document.item.php @@ -251,6 +251,9 @@ $_SESSION['accessible'][$this->document_srl] = true; $content = $this->get('content'); + + // CSRF등의 보안 취약점 문제를 막기위한 코드로 인하여 새창 띄우기 코드가 무효화 된것을 원상태로 변경 + $content = str_replace('_onclick="window.open(this.href);return false;"','onclick="window.open(this.href);return false;"',$content); // rewrite모듈을 사용하면 링크 재정의 $oContext = &Context::getInstance(); @@ -258,9 +261,6 @@ $content = preg_replace('/^"^\'^=])(http|https|ftp|mms):\/\/([^ ^<^"^\']*)!is','$1$2://$3',' '.$content); - // 이 게시글을... 팝업메뉴를 출력할 경우 if($add_popup_menu) { $content = sprintf(