영카트5 5.2.9 보안패치
페이지 정보
본문
** 수정내역 **
게시판에서 특수문자 일부 입력시 캐쉬 파일 생성 오류 수정
그누보드 AND 검색을 이용한 취약점 수정 (17-455) ( KISA 에서 제보해 주셨습니다. )
사용후기 관리자 페이지 변수명 오류 수정 ( 지운아빠 님이 알려주셨습니다. )
네이버페이 옵션명 치환
1:1 문의 페이징 오류 수정 ( 진서기 님이 알려주셨습니다. )
cheditor js 업로드 수정
스마트에디터 2.9.0 버전으로 수정
게시판 글쓰기시 버튼도 토큰 적용되도록 수정
코멘트 폼 및 게시판 패스워드 action url에 https 처리 ( 해피정 님이 알려주셨습니다. )
kcaptcha https 적용이 안되는 오류 수정 ( 신비 님이 알려주셨습니다. )
그누보드 글 수정 XSS 취약점 수정 ( 17-454 ) ( KISA 에서 제보해 주셨습니다. )
게시판 본문의 url 자동 링크 소스 수정
https://github.com/gnuboard/youngcart5/commit/a897cac0429a38b9947cf1e283eee687cafb9907
https://github.com/gnuboard/youngcart5/commit/64b2d776c157effe525afe71eef3c2ab74b00969
https://github.com/gnuboard/youngcart5/commit/0640038d2f7dc8b6dd923571295c7331e875ecd2
https://github.com/gnuboard/youngcart5/commit/bfedcdf4b373cdc7e32fdce5703516f478b289c4
https://github.com/gnuboard/youngcart5/commit/34e122a21593d3f331f0b357b371e2dc99b93e19
https://github.com/gnuboard/youngcart5/commit/f0995a2c56520653d50c8f2f490238226e0035d3
https://github.com/gnuboard/youngcart5/commit/c877ccb0d9b478f91b892c516ba1ef278e2774ff
https://github.com/gnuboard/youngcart5/commit/09be06fbb6d0a5c4db1a35b3f22367d4bcb97e99
https://github.com/gnuboard/youngcart5/commit/6fc5b7b5073b14794acc16a1b530d7d5e8aa0f16
https://github.com/gnuboard/youngcart5/commit/2892919eafd89bda361d206cf09c0f9373564300
https://github.com/gnuboard/youngcart5/commit/df20a2311f9a65acacc833f35e3f7d091b18e3cb
https://github.com/gnuboard/youngcart5/commit/564817833b284b7fff62f33be6adb8d6c11ec6db
https://github.com/gnuboard/youngcart5/commit/ebd33af3a7ee395bb2a1a5989fca206793e6e979
ebd33af 5.2.9 버전 수정
M config.php
D plugin/editor/smarteditor2/SmartEditor2.html
5648178 게시판 본문의 url 자동 링크 소스 수정
M lib/common.lib.php
df20a23 그누보드 글 수정 XSS 취약점 수정 ( 17-454 )
M bbs/write.php
2892919 kcaptcha https 적용이 안되는 오류 수정
M plugin/kcaptcha/kcaptcha.lib.php
6fc5b7b 코멘트 폼 및 게시판 패스워드 action url에 https 처리
M bbs/delete.php
M bbs/delete_all.php
M bbs/delete_comment.php
M bbs/password.php
M bbs/view_comment.php
M bbs/write_comment_update.php
M skin/board/basic/view_comment.skin.php
M skin/board/gallery/view_comment.skin.php
M theme/basic/skin/board/basic/view_comment.skin.php
M theme/basic/skin/board/gallery/view_comment.skin.php
09be06f 게시판 글쓰기시 버튼도 토큰 적용되도록 수정
M js/common.js
c877ccb 스마트에디터 2.9.0 버전으로 수정
A plugin/editor/smarteditor2/SmartEditor2.html
M plugin/editor/smarteditor2/SmartEditor2Skin.html
A plugin/editor/smarteditor2/SmartEditor2Skin_en_US.html
A plugin/editor/smarteditor2/SmartEditor2Skin_ja_JP.html
A plugin/editor/smarteditor2/SmartEditor2Skin_ko_KR.html
A plugin/editor/smarteditor2/SmartEditor2Skin_zh_CN.html
A plugin/editor/smarteditor2/SmartEditor2Skin_zh_TW.html
A plugin/editor/smarteditor2/SmartEditor2noframe.html
M plugin/editor/smarteditor2/config.js
A plugin/editor/smarteditor2/css/en_US/smart_editor2.css
A plugin/editor/smarteditor2/css/en_US/smart_editor2_in.css
A plugin/editor/smarteditor2/css/en_US/smart_editor2_items.css
A plugin/editor/smarteditor2/css/en_US/smart_editor2_out.css
A plugin/editor/smarteditor2/css/ja_JP/smart_editor2.css
A plugin/editor/smarteditor2/css/ja_JP/smart_editor2_in.css
A plugin/editor/smarteditor2/css/ja_JP/smart_editor2_items.css
A plugin/editor/smarteditor2/css/ja_JP/smart_editor2_out.css
A plugin/editor/smarteditor2/css/ko_KR/smart_editor2.css
A plugin/editor/smarteditor2/css/ko_KR/smart_editor2_in.css
A plugin/editor/smarteditor2/css/ko_KR/smart_editor2_items.css
A plugin/editor/smarteditor2/css/ko_KR/smart_editor2_out.css
A plugin/editor/smarteditor2/css/zh_CN/smart_editor2.css
A plugin/editor/smarteditor2/css/zh_CN/smart_editor2_in.css
A plugin/editor/smarteditor2/css/zh_CN/smart_editor2_items.css
A plugin/editor/smarteditor2/css/zh_CN/smart_editor2_out.css
A plugin/editor/smarteditor2/css/zh_TW/smart_editor2.css
A plugin/editor/smarteditor2/css/zh_TW/smart_editor2_in.css
A plugin/editor/smarteditor2/css/zh_TW/smart_editor2_items.css
A plugin/editor/smarteditor2/css/zh_TW/smart_editor2_out.css
M plugin/editor/smarteditor2/editor.lib.php
A plugin/editor/smarteditor2/img/bg_spell.gif
A plugin/editor/smarteditor2/img/bx_set_110302.gif
A plugin/editor/smarteditor2/img/en_US/btn_set.png
A plugin/editor/smarteditor2/img/en_US/text_tool_set.png
M plugin/editor/smarteditor2/img/icon_set.gif
A plugin/editor/smarteditor2/img/ja_JP/btn_set.png
A plugin/editor/smarteditor2/img/ja_JP/text_tool_set.png
M plugin/editor/smarteditor2/img/ko_KR/btn_set.png
M plugin/editor/smarteditor2/img/ko_KR/text_tool_set.png
A plugin/editor/smarteditor2/img/zh_CN/btn_set.png
A plugin/editor/smarteditor2/img/zh_CN/text_tool_set.png
A plugin/editor/smarteditor2/img/zh_TW/btn_set.png
A plugin/editor/smarteditor2/img/zh_TW/text_tool_set.png
D plugin/editor/smarteditor2/js/HuskyEZCreator.js
D plugin/editor/smarteditor2/js/SE2B_Configuration_General.js
D plugin/editor/smarteditor2/js/SE2B_Configuration_Service.js
D plugin/editor/smarteditor2/js/SE2BasicCreator.js
D plugin/editor/smarteditor2/js/SE2M_Configuration.js
D plugin/editor/smarteditor2/js/jindo.min.js
D plugin/editor/smarteditor2/js/jindo_component.js
M plugin/editor/smarteditor2/js/lib/jindo2.all.js
M plugin/editor/smarteditor2/js/lib/jindo_component.js
A plugin/editor/smarteditor2/js/service/HuskyEZCreator.js
A plugin/editor/smarteditor2/js/service/SE2BasicCreator.js
A plugin/editor/smarteditor2/js/service/SE2M_Configuration.js
A plugin/editor/smarteditor2/js/service/hp_SE_OuterIFrameControl.js
A plugin/editor/smarteditor2/js/service/hp_SE_ToolbarToggler.js
A plugin/editor/smarteditor2/js/service/husky_SE2B_Lang_en_US.js
A plugin/editor/smarteditor2/js/service/husky_SE2B_Lang_ja_JP.js
A plugin/editor/smarteditor2/js/service/husky_SE2B_Lang_ko_KR.js
A plugin/editor/smarteditor2/js/service/husky_SE2B_Lang_zh_CN.js
A plugin/editor/smarteditor2/js/service/husky_SE2B_Lang_zh_TW.js
M plugin/editor/smarteditor2/js/smarteditor2.js
M plugin/editor/smarteditor2/js/smarteditor2.min.js
M plugin/editor/smarteditor2/smart_editor2_inputarea.html
M plugin/editor/smarteditor2/smart_editor2_inputarea_ie8.html
f0995a2 cheditor js 업로드 수정
M plugin/editor/cheditor5/cheditor.js
34e122a 1:1 문의 페이징 오류 수정
M bbs/qalist.php
bfedcdf 네이버페이 옵션명 치환
M shop/naverpay/naverpay_order.php
0640038 사용후기 관리자 페이지 변수명 오류 수정
M adm/shop_admin/itemuseform.php
64b2d77 그누보드 AND 검색을 이용한 취약점 수정 (17-455)
M bbs/search.php
a897cac 게시판에서 특수문자 일부 입력시 캐쉬 파일 생성 오류 수정
M adm/board_copy_update.php
M lib/latest.lib.php
관련링크
-
https://sir.kr/yc5_pds/1983
2578회 연결
- 이전글[웹드로우] 2017년 8월 카드사 무이자할부 이벤트 안내 17.07.31
- 다음글그누보드5 보안패치 5.2.9 17.07.04