fanbinit/rhymix
1
0
Fork 0
mirror of https://github.com/Lastorder-DC/rhymix.git synced 2026-05-22 05:15:29 +09:00
Code Issues Projects Releases Packages Wiki Activity

Vid parameter 취약점 필터링

Browse source 
임의값을 vid parameter에 입력하여 취약점 발생 방지 필터링
This commit is contained in:
Stellar 2014-10-20 17:53:50 +09:00
parent dff41b789d
commit f7113b9d89
1 changed files with 5 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

6
classes/context/Context.class.php
View file

@ -1289,10 +1289,14 @@ class Context
{ {
$result[$k] = !preg_match('/^[0-9,]+$/', $v) ? (int) $v : $v; $result[$k] = !preg_match('/^[0-9,]+$/', $v) ? (int) $v : $v;
} }
elseif($key === 'mid' || $key === 'vid' || $key === 'search_keyword') elseif($key === 'mid' || $key === 'search_keyword')
{ {
$result[$k] = htmlspecialchars($v, ENT_COMPAT | ENT_HTML401, 'UTF-8', FALSE); $result[$k] = htmlspecialchars($v, ENT_COMPAT | ENT_HTML401, 'UTF-8', FALSE);
} }
elseif($key === 'vid' )
{
$result[$k] = urlencode($v);
}
else else
{ {
$result[$k] = $v; $result[$k] = $v;