Á¦·Îº¸µåÀÇ º¸¾È Èì°áÀÌ ´Ù½Ã ¹ß°ßµÇ¾ú°í ±Ù·¡¿¡ ¹®Á¦°¡ µÇ°í ÀÖ´Â ºê¶óÁú ÇØÄ¿ ±×·ìÀÇ ÁÖ¿ä ħÅõ °æ·Î°¡ µÇ°í ÀÖ´Ù°í ÇÕ´Ï´Ù. ¾Æ·¡ÀÇ ¹®¼´Â (ÁÖ)¿¡½ºÆ¼Áö½ÃÅ¥¸®Æ¼¿¡¼ Á¦ÀÛ/¹èÆ÷ÇÑ ¹®¼¸¦ ¿ä¾à Á¤¸®ÇÑ °ÍÀ̸ç, Á¦·Îº¸µåÀÇ °ø½Ä ÆÐÄ¡ ³»¿ëÀÌ ¾Æ´Õ´Ï´Ù. ÀÌ ¹®¼ÀÇ ÀúÀÛ±ÇÀº (ÁÖ)¿¡½ºÆ¼Áö½ÃÅ¥¸®Æ¼¿¡ ÀÖ½À´Ï´Ù.
Âü°í¹®¼ :
http://www.stgsecurity.com/data/SSA20050110-25.pdf
¡Ø ÆÐÄ¡ Àû¿ë½Ã '°ýÈ£'ÀÇ ¼ø¼ ¹× °¹¼ö¿¡ ÁÖÀÇÇϽʽÿÀ.
¡Ø ºÓ°Ô Ç¥½ÃµÈ ºÎºÐÀÌ ¼öÁ¤/Ãß°¡µÈ ºÎºÐÀÔ´Ï´Ù.
1) _head.php 12ÇàÂë
// ¶óÀ̺귯¸® ÇÔ¼ö ÆÄÀÏ include
if(eregi(":\/\/",$_zb_path)||eregi("\.\.",$_zb_path)) $_zb_path=""; // 2005.1.13 patch
2) include/write.php ¸Ç ¹Ø
¡Ø 12¿ù 27ÀÏ ÆÐÄ¡ÇϽŠºÐ
// °øÁö±â´É »ç¿ëÇÏ´ÂÁö ¾ÊÇÏ´ÂÁö Ç¥½Ã;;
if(!$is_admin||$mode=="reply") { $hide_notice_start="<!--";$hide_notice_end="-->"; }
if(eregi(":\/\/",$dir)||eregi("\.\.",$dir)) $dir="."; // 2005.1.13 patch
include $dir."/write.php";
¡Ø 12¿ù 27ÀÏ ÆÐÄ¡ÇÏÁö ¾ÊÀ¸½Å ºÐ
// °øÁö±â´É »ç¿ëÇÏ´ÂÁö ¾ÊÇÏ´ÂÁö Ç¥½Ã;;
if(!$is_admin||$mode=="reply") { $hide_notice_start="<!--";$hide_notice_end="-->"; }
if(eregi(":\/\/",$dir)||eregi("\.\.",$dir)) $dir="."; // 2005.1.13 patch
include $dir."/write.php";
¸¦ Ãß°¡
3) outlogin.php ¸Ç À§, ÀúÀÛ±Ç ¹Ù·Î ¾Æ·§ ºÎºÐ
global º¯¼ö°¡ ÁÖ¿í ³ª¿µÈ ±× ´ÙÀ½ ÁÙ¿¡
¡Ø 12¿ù 27ÀÏ ÆÐÄ¡ÇϽŠºÐ
if(eregi(":\/\/",$_zb_path)||eregi("\.\.",$_zb_path)) $_zb_path="./"; // 2005.1.13 patch
¡Ø 12¿ù 27ÀÏ ÆÐÄ¡ÇÏÁö ¾ÊÀ¸½Å ºÐ
if(eregi(":\/\/",$_zb_path)||eregi("\.\.",$_zb_path)) $_zb_path="./"; // 2005.1.13 patch
¸¦ Ãß°¡
4) include/print_category.php ¸ÇÀ§
<?
if($setup[use_category]) {
if(eregi(":\/\/",$dir)||eregi("\.\.",$dir)) $dir="."; // 2005.1.13 patch
$c_href="&id=$id&page=$page&page_num=....(»ý·«)....
±âŸ) zero_vote ½ºÅ² ¾È¿¡ ÀÖ´Â ÆÄÀÏ Áß
login.php, setup.php, ask_password.php, error.php ¿¡¼
<? include "$dir/value.php3"; ?>
¸¦
<? if(eregi(":\/\/",$dir)||eregi("\.\.",$dir)) $dir="."; // 2005.1.13 patch
include "$dir/value.php3"; ?>
·Î ¼öÁ¤
¡Ø zero_vote ½ºÅ²»Ó¸¸ÀÌ ¾Æ´Ï¶ó À§¿Í °°ÀÌ $dir.... ÀÌ·± °æ·Î·Î ÆÄÀÏÀ» ÀÎŬ·çµå ÇÏ´Â ½ºÅ²Àº ¸ðµÎ °íÃÄÁֽʽÿÀ.