[보안패치] 그누보드 5.1.13 정보
[보안패치] 그누보드 5.1.13첨부파일
본문
** 수정내역 **
XSS 취약점 (16-059, 16-060) 이휘원님이 한국인터넷진흥원통해 알려주셨습니다.
XSS 취약점(15-727) 한국인터넷진흥원에서 알려주셨습니다.
Reflected XSS 취약점(16-036) 한국인터넷진흥원에서 알려주셨습니다.
비밀 댓글 노출 취약점(16-067) 한국인터넷진흥원에서 알려주셨습니다.
https://github.com/gnuboard/gnuboard5/commit/d0e368fe2a02503391427ecfe05129b92ac69779
https://github.com/gnuboard/gnuboard5/commit/18ef4b0767e2e100eb97b35c078b4d032ab9cc15
https://github.com/gnuboard/gnuboard5/commit/4913da0a1d06642bcf04688860af084cf4c3de4d
https://github.com/gnuboard/gnuboard5/commit/e9fd9f03fd46291ea82feb39e68070193a08a6d3
https://github.com/gnuboard/gnuboard5/commit/a73e48c3e285e52a5aaab2e6099ebce805eb8016
https://github.com/gnuboard/gnuboard5/commit/1e011ba56dd8d102feda78386539e5777759ba32
https://github.com/gnuboard/gnuboard5/commit/20b1d8c7e5c302121f31667cf7aa950b24cc4aea
https://github.com/gnuboard/gnuboard5/commit/008ae978dde3079641855014a77673bd841ba98a
https://github.com/gnuboard/gnuboard5/commit/9a870506ab94acf04ea1a818a02d583b14f934ec
https://github.com/gnuboard/gnuboard5/commit/6b43e67c4097e049faa8ed88dd5d32086e1b508a
https://github.com/gnuboard/gnuboard5/commit/63f9e4c8df1f4bc871b05a53530964190ede9b83
https://github.com/gnuboard/gnuboard5/commit/b1f034292175af95f603667180dadc1780e4cc84
a14689f 5.1.13 버전변경
M config.php
ee702ff SIR 도메인 변경
M LICENSE.txt
M adm/board_form_update.php
M adm/config_form.php
M adm/service.php
M bbs/list.php
M config.php
M lib/common.lib.php
M theme/basic/readme.txt
1a142e5 Merge branch 'master' into kisa
c9a4697 Merge branch 'master' of github.com:gnuboard/g5
4b38d93 스마트 에디터 2.8.2 에 추가된 파일 적용
A plugin/editor/smarteditor2/SmartEditor2_noframe.html
A plugin/editor/smarteditor2/js/SE2M_Configuration.js
A plugin/editor/smarteditor2/js/lib/jindo2.all.js
A plugin/editor/smarteditor2/js/lib/jindo_component.js
A plugin/editor/smarteditor2/photo_uploader/popup/_common.php
5d2851d 스마트에디터 2.8.2 적용 및 에디터 업로드 보안 수정
D plugin/editor/smarteditor2/SmartEditor2.html
M plugin/editor/smarteditor2/SmartEditor2Skin.html
M plugin/editor/smarteditor2/css/smart_editor2.css
M plugin/editor/smarteditor2/css/smart_editor2_in.css
M plugin/editor/smarteditor2/css/smart_editor2_items.css
M plugin/editor/smarteditor2/css/smart_editor2_out.css
M plugin/editor/smarteditor2/editor.lib.php
M plugin/editor/smarteditor2/js/SE2BasicCreator.js
M plugin/editor/smarteditor2/js/smarteditor2.js
M plugin/editor/smarteditor2/js/smarteditor2.min.js
M plugin/editor/smarteditor2/photo_uploader/popup/file_uploader.php
M plugin/editor/smarteditor2/photo_uploader/popup/file_uploader_html5.php
M plugin/editor/smarteditor2/photo_uploader/popup/index.html
M plugin/editor/smarteditor2/photo_uploader/popup/js/basic.js
M plugin/editor/smarteditor2/photo_uploader/popup/php/index.php
D plugin/editor/smarteditor2/sample.php
M plugin/editor/smarteditor2/smart_editor2_inputarea.html
f6e6a73 Merge branch 'master' into kisa
3674acc g5_admin_url 코드 수정
M adm/admin.head.php
M head.sub.php
ab53654 Merge branch 'master' into kisa
e5aedd5 g5_admin_url 변수 설정 코드 변경
M adm/admin.head.php
M head.sub.php
M theme/basic/head.sub.php
60ea7fd Merge branch 'master' into kisa
7db9a33 메일인증 기능 수정
M bbs/login_check.php
M bbs/register_email.php
M bbs/register_email_update.php
88c9537 비밀 댓글 노출 취약점(16-067) 수정
M mobile/skin/board/basic/view_comment.skin.php
M mobile/skin/board/gallery/view_comment.skin.php
M skin/board/basic/view_comment.skin.php
M skin/board/gallery/view_comment.skin.php
M theme/basic/mobile/skin/board/basic/view_comment.skin.php
M theme/basic/mobile/skin/board/gallery/view_comment.skin.php
M theme/basic/skin/board/basic/view_comment.skin.php
M theme/basic/skin/board/gallery/view_comment.skin.php
d278554 Merge branch 'master' into kisa
9df86d7 sca 필터링 코드 수정
M common.php
714d64a Reflected XSS 취약점(16-036) 수정
M bbs/alert.php
f3abd57 XSS 취약점(15-727) 수정
D plugin/editor/smarteditor2/sample.php
e902334 XSS 취약점(16-060) 수정
M bbs/member_confirm.php
43f4b2c XSS 취약점(16-059) 수정
M bbs/formmail.php
M mobile/skin/member/basic/formmail.skin.php
M skin/member/basic/formmail.skin.php
M theme/basic/mobile/skin/member/basic/formmail.skin.php
M theme/basic/skin/member/basic/formmail.skin.php
XSS 취약점 (16-059, 16-060) 이휘원님이 한국인터넷진흥원통해 알려주셨습니다.
XSS 취약점(15-727) 한국인터넷진흥원에서 알려주셨습니다.
Reflected XSS 취약점(16-036) 한국인터넷진흥원에서 알려주셨습니다.
비밀 댓글 노출 취약점(16-067) 한국인터넷진흥원에서 알려주셨습니다.
https://github.com/gnuboard/gnuboard5/commit/d0e368fe2a02503391427ecfe05129b92ac69779
https://github.com/gnuboard/gnuboard5/commit/18ef4b0767e2e100eb97b35c078b4d032ab9cc15
https://github.com/gnuboard/gnuboard5/commit/4913da0a1d06642bcf04688860af084cf4c3de4d
https://github.com/gnuboard/gnuboard5/commit/e9fd9f03fd46291ea82feb39e68070193a08a6d3
https://github.com/gnuboard/gnuboard5/commit/a73e48c3e285e52a5aaab2e6099ebce805eb8016
https://github.com/gnuboard/gnuboard5/commit/1e011ba56dd8d102feda78386539e5777759ba32
https://github.com/gnuboard/gnuboard5/commit/20b1d8c7e5c302121f31667cf7aa950b24cc4aea
https://github.com/gnuboard/gnuboard5/commit/008ae978dde3079641855014a77673bd841ba98a
https://github.com/gnuboard/gnuboard5/commit/9a870506ab94acf04ea1a818a02d583b14f934ec
https://github.com/gnuboard/gnuboard5/commit/6b43e67c4097e049faa8ed88dd5d32086e1b508a
https://github.com/gnuboard/gnuboard5/commit/63f9e4c8df1f4bc871b05a53530964190ede9b83
https://github.com/gnuboard/gnuboard5/commit/b1f034292175af95f603667180dadc1780e4cc84
a14689f 5.1.13 버전변경
M config.php
ee702ff SIR 도메인 변경
M LICENSE.txt
M adm/board_form_update.php
M adm/config_form.php
M adm/service.php
M bbs/list.php
M config.php
M lib/common.lib.php
M theme/basic/readme.txt
1a142e5 Merge branch 'master' into kisa
c9a4697 Merge branch 'master' of github.com:gnuboard/g5
4b38d93 스마트 에디터 2.8.2 에 추가된 파일 적용
A plugin/editor/smarteditor2/SmartEditor2_noframe.html
A plugin/editor/smarteditor2/js/SE2M_Configuration.js
A plugin/editor/smarteditor2/js/lib/jindo2.all.js
A plugin/editor/smarteditor2/js/lib/jindo_component.js
A plugin/editor/smarteditor2/photo_uploader/popup/_common.php
5d2851d 스마트에디터 2.8.2 적용 및 에디터 업로드 보안 수정
D plugin/editor/smarteditor2/SmartEditor2.html
M plugin/editor/smarteditor2/SmartEditor2Skin.html
M plugin/editor/smarteditor2/css/smart_editor2.css
M plugin/editor/smarteditor2/css/smart_editor2_in.css
M plugin/editor/smarteditor2/css/smart_editor2_items.css
M plugin/editor/smarteditor2/css/smart_editor2_out.css
M plugin/editor/smarteditor2/editor.lib.php
M plugin/editor/smarteditor2/js/SE2BasicCreator.js
M plugin/editor/smarteditor2/js/smarteditor2.js
M plugin/editor/smarteditor2/js/smarteditor2.min.js
M plugin/editor/smarteditor2/photo_uploader/popup/file_uploader.php
M plugin/editor/smarteditor2/photo_uploader/popup/file_uploader_html5.php
M plugin/editor/smarteditor2/photo_uploader/popup/index.html
M plugin/editor/smarteditor2/photo_uploader/popup/js/basic.js
M plugin/editor/smarteditor2/photo_uploader/popup/php/index.php
D plugin/editor/smarteditor2/sample.php
M plugin/editor/smarteditor2/smart_editor2_inputarea.html
f6e6a73 Merge branch 'master' into kisa
3674acc g5_admin_url 코드 수정
M adm/admin.head.php
M head.sub.php
ab53654 Merge branch 'master' into kisa
e5aedd5 g5_admin_url 변수 설정 코드 변경
M adm/admin.head.php
M head.sub.php
M theme/basic/head.sub.php
60ea7fd Merge branch 'master' into kisa
7db9a33 메일인증 기능 수정
M bbs/login_check.php
M bbs/register_email.php
M bbs/register_email_update.php
88c9537 비밀 댓글 노출 취약점(16-067) 수정
M mobile/skin/board/basic/view_comment.skin.php
M mobile/skin/board/gallery/view_comment.skin.php
M skin/board/basic/view_comment.skin.php
M skin/board/gallery/view_comment.skin.php
M theme/basic/mobile/skin/board/basic/view_comment.skin.php
M theme/basic/mobile/skin/board/gallery/view_comment.skin.php
M theme/basic/skin/board/basic/view_comment.skin.php
M theme/basic/skin/board/gallery/view_comment.skin.php
d278554 Merge branch 'master' into kisa
9df86d7 sca 필터링 코드 수정
M common.php
714d64a Reflected XSS 취약점(16-036) 수정
M bbs/alert.php
f3abd57 XSS 취약점(15-727) 수정
D plugin/editor/smarteditor2/sample.php
e902334 XSS 취약점(16-060) 수정
M bbs/member_confirm.php
43f4b2c XSS 취약점(16-059) 수정
M bbs/formmail.php
M mobile/skin/member/basic/formmail.skin.php
M skin/member/basic/formmail.skin.php
M theme/basic/mobile/skin/member/basic/formmail.skin.php
M theme/basic/skin/member/basic/formmail.skin.php
댓글 14개
감사합니다..
저것들을... 언제 업데이트 하나..
..감사합니다.. 일단 업데이트 해보자 ..
..감사합니다.. 일단 업데이트 해보자 ..
감사합니다....
감사합니다!!
감사합니다.
감사합니다.
감사합니다.
감사합니다
감사합니다.
수고 많이 하셨습니다.
수고 많이 하셨습니다.
역시 믿고 쓰는 그누보드네요.
잘 적용하였습니다.
잘 적용하였습니다.
감사합니다.
감사합니다.
신고가 접수된 글입니다.
신고 횟수가 1회 이상이면 글을 확인하지 못합니다.
아니 이렇게 완벽한 그누보드가 취약점이 있다고?;;
정말 감사합니다~유용하게 잘쓰겠습니다..