HTML
Javascript
Flash Actionscript
PHP
mySQL
ASP
MS-SQL
Linux
Others
Ziwoo Board
Portfolio
About
|
|
Ziwoo Board |
ÀÛ¼º |
2007-04-05 19:20:26 Ãßõ: 0 Á¶È¸: 1931 |
Á¦¸ñ |
½ºÆÔ¼º ±ÛµéÀÇ ÇÊÅ͸µ 󸮹æ¹ý¿¡ ´ëÇؼ... |
À̸§(ID) |
¹ÚÁ¾±¹ (efactory)
|
|
Áö¿ìº¸µå¸¦ »ç¿ëÇÑ »çÀÌÆ®¿¡ ÃÖ±Ùµé¾î À¯·´ÂÊ¿¡¼ ¹«Áö¸·ÁöÇÏ°Ô µé¾î¿À´Â ´ë·®ÀÇ ½ºÆÔ±ÛµéÀÌ ¹ß»ýÇÏ°í ÀÖ½À´Ï´Ù.
´ñ±Û»Ó ¾Æ´Ï¶ó ÀϹݱ۵鵵 »ó´ç¼ö ¾öû³ª°Ô µî·ÏÀÌ µÇ°í Àִµ¥¿ä.
°ø°³µÇ¾î ÀÖ´Â °Ô½ÃÆÇÀ̶ó ±×·±°Å °°±â´Â ÇÏÁö¸¸ ±ÛŸ°í ȸ¿øÁ¦·Î ÇÒ¼öµµ ¾ø´Â »óÅÂÀÎ °Ô½ÃÆÇÀ̶ó¼¿ä.
±Û¾²±â½Ã IP³ª ƯÁ¤´Ü¾î¿¡´ëÇÑ ÇÊÅ͸µÀ» Çϴ¹æ¹ýÀÌ ÀÖÀ»±î¿ä?
|
|
|
|
|
|
Áö¿ì(218.155.158.216)
2007-04-06 00:19:09
|
|
¾Æ·¡´Â open.php ÀÇ ´ñ±ÛÀԷ ó¸®ºÎºÐÀÔ´Ï´Ù.
Á¦ °æ¿ì ȸ¿øÁ¦¶ó ±×·±Áö ´ñ±Û¿¡¸¸ ¿Ã¶ó¿À±æ·¹,
°¡Àå ´Ü¼øÇÏ°í Á÷Á¢ÀûÀÎ ¹æ¹ýÀ¸·Î ¾Æ·¡Ã³·³ Çسõ¾Ò½À´Ï´Ù.
º¯¼ö ¸î±ºµ¥¸¸ ÀûÀýÈ÷ °íÄ¡¼Å¼ ÀϹݱۿ¡µµ Àû¿ëÇϼ¼¿ä..
if($_GET["cmd"]=="cmt_write"){
$Comm["boardid"] = $_GET["boardid"];
$Comm["uid"] = $_GET["uid"];
$Comm["commenter_name"] = $_POST["commenter_name"];
$Comm["commenter_id"] = $_POST["commenter_id"];
$Comm["commenter_passwd"] = $_POST["commenter_passwd"];
$Comm["comment_content"] = htmlspecialchars($_POST["comment_content"]);
$Comm["signdate"] = date("Y-m-d H:i:s",time());
if(strstr($_POST["comment_content"],"[/url]")) {
echo "<script>alert('½ºÆÔÀ¸·Î ÀÇ½ÉµÇ¾î µî·ÏÀ» ÁßÁöÇÏ¿´½À´Ï´Ù.')</script>";
exit;
}
if(strstr($_POST["commenter_id"],"<")) {
echo "<script>alert('½ºÆÔÀ¸·Î ÀÇ½ÉµÇ¾î µî·ÏÀ» ÁßÁöÇÏ¿´½À´Ï´Ù.')</script>";
exit;
}
if(strlen($_POST["commenter_id"])>20) {
echo "<script>alert('½ºÆÔÀ¸·Î ÀÇ½ÉµÇ¾î µî·ÏÀ» ÁßÁöÇÏ¿´½À´Ï´Ù.')</script>";
exit;
}
$Query = insertQuery($Comm, $_GET["boardid"]."_comment");
mysql_query($Query) or die(mysql_error() . 'DB¿¡ ±â·ÏÇÏÁö ¸øÇß½À´Ï´Ù.');
echo "<meta http-equiv='Refresh' content='0; URL=open.php?startPage=".$_GET["startPage"].$etc_key."'>";
exit;
} |
|
|
|
|
|
|
|
|