Commit: ec51389020cbe35cf536fabbd2a85f0814d82289 - nucleus-jp-ancient (git) - Nucleus日本語版 - OSDN

Conta
- Download
- Desenvolver
- Login
- Forgot Account/Password
- Criar Conta
- Linguagem
- Ajuda
Linguagem
Ajuda

R/O
HTTP
SSH
HTTPS

nucleus-jp-ancient: Commit

Nucleus CMS日本語版SVNをgit-svnしたもの。リポジトリの変換作業用

Commit MetaInfo

Revisão	ec51389020cbe35cf536fabbd2a85f0814d82289 (tree)
Hora	2008-02-04 15:11:41
Autor	kimitake <kimitake@1ca2...>
Commiter	kimitake

Mensagem de Log

Linked XSS vulnerability

git-svn-id: https://svn.sourceforge.jp/svnroot/nucleus-jp/nucleus-jp/branches/branch-3-3@361 1ca29b6e-896d-4ea0-84a5-967f57386b96

Mudança Sumário

modified: euc/nucleus/libs/globalfunctions.php (diff)
modified: utf8/nucleus/libs/globalfunctions.php (diff)

Diff

--- a/euc/nucleus/libs/globalfunctions.php

+++ b/euc/nucleus/libs/globalfunctions.php

		@@ -13,8 +13,8 @@
13	13	/**
14	14	* @license http://nucleuscms.org/license.txt GNU General Public License
15	15	* @copyright Copyright (C) 2002-2007 The Nucleus Group
16		- * @version $Id: globalfunctions.php,v 1.13.2.1 2008-01-29 07:05:06 kimitake Exp $
17		- * $NucleusJP: globalfunctions.php,v 1.23.2.5 2007/12/05 01:28:41 kmorimatsu Exp $
	16	+ * @version $Id: globalfunctions.php,v 1.13.2.2 2008-02-04 06:11:41 kimitake Exp $
	17	+ * $NucleusJP: globalfunctions.php,v 1.23.2.6 2008/02/04 06:10:33 kimitake Exp $
18	18	*/
19	19
20	20	// needed if we include globalfunctions from install.php

		@@ -34,7 +34,7 @@ if ($CONF['debug']) {
34	34
35	35	// Avoid notices
36	36	if (!isset($CONF['Self'])) {
37		- $CONF['Self'] = $_SERVER['PHP_SELF'];
	37	+ $CONF['Self'] = htmlspecialchars($_SERVER['PHP_SELF'],ENT_QUOTES);
38	38	}
39	39
40	40	/*

		@@ -784,7 +784,7 @@ function selector() {
784	784	// if ($blogid && (intval($blogid) != $obj->iblog) ) {
785	785	// doError(_ERROR_NOSUCHITEM);
786	786	// }
787		- if ($blogid && (intval($blogid) != $obj->iblog)) {
	787	+ if ($blogid && (intval($blogid) != $obj->iblog) ) {
788	788	if (!headers_sent()) {
789	789	$b =& $manager->getBlog($obj->iblog);
790	790	$CONF['ItemURL'] = $b->getURL();

--- a/utf8/nucleus/libs/globalfunctions.php

+++ b/utf8/nucleus/libs/globalfunctions.php

		@@ -13,8 +13,8 @@
13	13	/**
14	14	* @license http://nucleuscms.org/license.txt GNU General Public License
15	15	* @copyright Copyright (C) 2002-2007 The Nucleus Group
16		- * @version $Id: globalfunctions.php,v 1.23.2.5 2007-12-05 01:28:41 kmorimatsu Exp $
17		- * $NucleusJP: globalfunctions.php,v 1.23.2.4 2007/12/02 23:49:30 kmorimatsu Exp $
	16	+ * @version $Id: globalfunctions.php,v 1.23.2.6 2008-02-04 06:10:33 kimitake Exp $
	17	+ * $NucleusJP: globalfunctions.php,v 1.23.2.5 2007/12/05 01:28:41 kmorimatsu Exp $
18	18	*/
19	19
20	20	// needed if we include globalfunctions from install.php

		@@ -34,7 +34,7 @@ if ($CONF['debug']) {
34	34
35	35	// Avoid notices
36	36	if (!isset($CONF['Self'])) {
37		- $CONF['Self'] = $_SERVER['PHP_SELF'];
	37	+ $CONF['Self'] = htmlspecialchars($_SERVER['PHP_SELF'],ENT_QUOTES);
38	38	}
39	39
40	40	/*

		@@ -784,7 +784,7 @@ function selector() {
784	784	// if ($blogid && (intval($blogid) != $obj->iblog) ) {
785	785	// doError(_ERROR_NOSUCHITEM);
786	786	// }
787		- if ($blogid && (intval($blogid) != $obj->iblog)) {
	787	+ if ($blogid && (intval($blogid) != $obj->iblog) ) {
788	788	if (!headers_sent()) {
789	789	$b =& $manager->getBlog($obj->iblog);
790	790	$CONF['ItemURL'] = $b->getURL();

Show on old repository browser