pl7À» ±âÁØÀ¸·Î ÇÕ´Ï´Ù. ¼öÁ¤ÀÎÁö Ãß°¡ÀÎÁö Àß ±¸º°Çϼ¼¿ä.
¿©·¯ °÷ÀÇ ÀÇ°ßÀ» Á¾ÇÕÇغ¸¸é ÇöÀç °ø°³µÈ ÆÐÄ¡ ÆÄÀÏ¿¡ ¾à°£ÀÇ ¹®Á¦°¡ ÀÖ´Â µí ÇÕ´Ï´Ù.
Ãß°¡2. ÂÊÁöÇÔ¿¡ ¾ÆÀ̵𰡠º¸ÀÌÁö ¾Ê´Â µîÀÇ ¹®Á¦´Â
1. image_box.php
¿ø·¡´ë·Î ¼û±â±â2. member_join_ok.php
40Çà
// ºó¹®ÀÚ¿ÀÎÁö¸¦ °Ë»ç
$user_id = str_replace("","",$user_id);
$name = str_replace("","",$name);
¹Ø¿¡
if(!get_magic_quotes_gpc()) {
$user_id = addslashes($user_id);
$password = addslashes($password);
}
¸¦ Ãß°¡
3. member_modify_ok.php
26Çà
$name = addslashes($name);
$job = addslashes($job);
$email = addslashes($email);
if($_zbDefaultSetup[check_email]=="true"&&!mail_mx_check($email)) Error("ÀÔ·ÂÇϽŠ$email Àº Á¸ÀçÇÏÁö ¾Ê´Â ¸ÞÀÏÁÖ¼ÒÀÔ´Ï´Ù.<br>´Ù½Ã Çѹø È®ÀÎÇÏ¿© Áֽñ⠹ٶø´Ï´Ù.");
if(!eregi("http://",$homepage)&&$homepage) $homepage="http://$homepage";
$homepage = addslashes($homepage);
$birth = addslashes($birth);
$hobby = addslashes($hobby);
$icq = addslashes($icq);
$msn = addslashes($msn);
$home_address = addslashes($home_address);
$home_tel = addslashes($home_tel);
$office_address = addslashes($office_address);
$office_tel = addslashes($office_tel);
$handphone = addslashes($handphone);
$comment = addslashes($comment);
¸¦
$name = addslashes(del_html($name));
$job = addslashes(del_html($job));
$email = addslashes(del_html($email));
if($_zbDefaultSetup[check_email]=="true"&&!mail_mx_check($email)) Error("ÀÔ·ÂÇϽŠ$email Àº Á¸ÀçÇÏÁö ¾Ê´Â ¸ÞÀÏÁÖ¼ÒÀÔ´Ï´Ù.<br>´Ù½Ã Çѹø È®ÀÎÇÏ¿© Áֽñ⠹ٶø´Ï´Ù.");
if(!eregi("http://",$homepage)&&$homepage) $homepage="http://$homepage";
$homepage = addslashes(del_html($homepage));
$birth = addslashes(del_html($birth));
$hobby = addslashes(del_html($hobby));
$icq = addslashes(del_html($icq));
$msn = addslashes(del_html($msn));
$home_address = addslashes(del_html($home_address));
$home_tel = addslashes(del_html($home_tel));
$office_address = addslashes(del_html($office_address));
$office_tel = addslashes(del_html($office_tel));
$handphone = addslashes(del_html($handphone));
$comment = addslashes(del_html($comment));
·Î ¼öÁ¤(¿©±âºÎÅÍ´Â ±ÍÂú¾Æ¼ ºÓÀº Ç¥½Ã´Â »ý·«ÇÕ´Ï´Ù.)
79Çà
if(!eregi(".gif",$picture_name)&&!eregi(".jpg",$picture_name))
¸¦
if(!eregi(".gif\$",$picture_name)&&!eregi(".jpg\$",$picture_name))
·Î ¼öÁ¤
4. login_check.php
7Çà
$password = trim($password);
¹Ø¿¡
if(!get_magic_quotes_gpc()) {
$user_id = addslashes($user_id);
$password = addslashes($password);
}
¸¦ Ãß°¡
5. lib.php (ÀÌ ÆÄÀÏ ¼öÁ¤ ÈÄ ¿¡·¯°¡ ³¯ °æ¿ì, ´ñ±Û¿¡ ¾Ë¸¯´ÔÀÇ ¸àÆ®¸¦ Âü°íÇϼ¼¿ä.)
5Çà
* ¸¶Áö¸· ¼öÁ¤ÀÏÀÚ : 2003. 8. 7
¸¦
* ¸¶Áö¸· ¼öÁ¤ÀÏÀÚ : 2006. 3. 15
·Î ¼öÁ¤
22Çà
@extract($HTTP_GET_VARS);
¸¦
foreach($HTTP_GET_VARS as $key=>$val) $$key = del_html($val);
·Î ¼öÁ¤
25Çà
@extract($HTTP_ENV_VARS);
¹Ø¿¡
$page = (int)$page;
$temp_filename=realpath(__FILE__);
if($temp_filename) $config_dir=eregi_replace("lib.php","",$temp_filename);
else $config_dir="";
Ãß°¡
6. member_memo.php (ÀÌ ÆÄÀÏ¿¡¼ ¼öÁ¤µÇ´Â ³»¿ëÀº ´ëºÎºÐ º¸¾È°ú´Â °ü°è ¾ø½À´Ï´Ù. ±âÁ¸¿¡ Ưº°ÇÑ ¹®Á¦°¡ ¾ø¾ú´Ù¸é
ÆĶõ»öÀ¸·Î Ç¥½ÃµÈ ºÎºÐ¸¸ ¼öÁ¤Çϼ¼¿ä.)
19Çà
// ÀÏÁÖÀÏ ³ÑÀº ±Û »èÁ¦;;
mysql_query("delete from $get_memo_table where (".time()." - reg_date) >= ".$_zbDefaultSetup[memo_limit_time]) or error(mysql_error());
¸¦
// ÁöÁ¤ ³ÑÀº ±Û »èÁ¦;;
mysql_query("delete from $get_memo_table where member_no='$member[no]' and (".time()." - reg_date) >= ".$_zbDefaultSetup[memo_limit_time]) or error(mysql_error());
·Î ¼öÁ¤
25Çà
mysql_query("delete from $get_memo_table where no='$del[$i]'");
¸¦
mysql_query("delete from $get_memo_table where no='$del[$i]' and member_no='$member[no]'");
·Î ¼öÁ¤
40Çà
$now_data=mysql_fetch_array(mysql_query("select a.subject as subject, a.reg_date as reg_date, a.readed as readed, b.name as name, a.member_from as member_from, a.memo as memo from
$get_memo_table a, $member_table b where a.member_from=b.no and a.no='$no' and a.member_no='$member[no]'"));
¸¦
$now_data=mysql_fetch_array(mysql_query("select * from $get_memo_table where no='$no' and member_no='$member[no]'"));
·Î ¼öÁ¤
70Çà
$que="select a.no as no, a.subject as subject, a.reg_date as reg_date, a.readed as readed, b.name as name, a.member_from as member_from from $get_memo_table a ,$member_table b where a.member_no='$member[no]' and a.member_from=b.no order by a.no desc limit $start_num,$page_num";
¸¦
$que="select a.no as no, a.subject as subject, a.reg_date as reg_date, a.readed as readed, b.name as name, b.user_id as user_id, a.member_from as member_from from $get_memo_table a ,$member_table b where a.member_no='$member[no]' and a.member_from=b.no order by a.no desc limit $start_num,$page_num";
·Î ¼öÁ¤
139Çà
if($now_data[name]) {
¸¦
if($now_data[no]) {
·Î ¼öÁ¤
162Çà
<a href=javascript:void(window.open('view_info.php?member_no=<?=$now_data[member_from]?>','view_info','width=400,height=500,toolbar=no,scrollbars=yes'))><?=stripslashes($now_data[name])?></a></td>
¸¦
<a href=javascript:void(window.open('view_info.php?member_no=<?=$now_data[member_from]?>','view_info','width=400,height=500,toolbar=no,scrollbars=yes'))><?=stripslashes($now_data[name])?></a> <font style=font-size:8pt;>(<b>ID</b> : <?=$now_data['user_id']?>)</td>
·Î ¼öÁ¤
170Çà
<?=stripslashes($now_data[subject])?></td>
¸¦
<?=stripslashes(del_html($now_data[subject]))?></td>
·Î ¼öÁ¤
247Çà
$data[subject]=stripslashes($data[subject]);
¸¦
$data[subject]=stripslashes(del_html($data[subject]));
·Î ¼öÁ¤
262Çà
<a href=javascript:void(window.open('view_info.php?member_no=<?=$data[member_from]?>','view_info','width=400,height=510,toolbar=no,scrollbars=yes'))><?=$data[name]?></a></td>
¸¦
<a href=javascript:void(window.open('view_info.php?member_no=<?=$data[member_from]?>','view_info','width=400,height=510,toolbar=no,scrollbars=yes'))><?=$data[name]?></a><br><font style=font-size:8pt;color:999999>(<?=$data['user_id']?>)</td>
·Î ¼öÁ¤
292Çà
<?
foot();
?>
¾Õ¿¡
<script>
¸¦ Ãß°¡
7. member_memo2.php (ÀÌ ÆÄÀÏ¿¡¼ ¼öÁ¤µÇ´Â ³»¿ëÀº ´ëºÎºÐ º¸¾È°ú´Â °ü°è ¾ø½À´Ï´Ù. ±âÁ¸¿¡ Ưº°ÇÑ ¹®Á¦°¡ ¾ø¾ú´Ù¸é
ÆĶõ»öÀ¸·Î Ç¥½ÃµÈ ºÎºÐ¸¸ ¼öÁ¤Çϼ¼¿ä.)
16Çà
// ÀÌÁÖÀÏ ³ÑÀº ±Û »èÁ¦;;
mysql_query("delete from $send_memo_table where (".time()." - reg_date) >= ".$_zbDefaultSetup[memo_limit_time]) or error(mysql_error());
¸¦
// ÁöÁ¤ ½Ã°£ÀÌ ³ÑÀº ±Û »èÁ¦;;
mysql_query("delete from $send_memo_table where member_no='$member[no]' and (".time()." - reg_date) >= ".$_zbDefaultSetup[memo_limit_time]) or error(mysql_error());
·Î ¼öÁ¤
22Çà
mysql_query("delete from $send_memo_table where no='$del[$i]'");
¸¦
mysql_query("delete from $send_memo_table where no='$del[$i]' and member_no='$member[no]'");
·Î ¼öÁ¤
37Çà
$now_data=mysql_fetch_array(mysql_query("select a.subject as subject, a.reg_date as reg_date, a.readed as readed, b.name as name, a.member_to as member_to, a.memo as memo from $send_memo_table a, $member_table b where a.member_to=b.no and a.no='$no' and a.member_no='$member[no]'"));
¸¦
$now_data=mysql_fetch_array(mysql_query("select * from $send_memo_table where no='$no' and member_no = '$member[no]'"));
·Î ¼öÁ¤
60Çà
$que="select a.no as no, a.subject as subject, a.reg_date as reg_date, a.readed as readed, b.name as name, a.member_to as member_to from $send_memo_table a, $member_table b where a.member_to=b.no and a.member_no='$member[no]' order by a.no desc limit $start_num,$page_num";
¸¦
$que="select a.no as no, a.subject as subject, a.reg_date as reg_date, a.readed as readed, b.name as name, b.user_id as user_id, a.member_to as member_to from $send_memo_table a ,$member_table b where a.member_no='$member[no]' and a.member_to=b.no order by a.no desc limit $start_num,$page_num";
·Î ¼öÁ¤
119Çà
<td>
¸¦
<td nowrap>
·Î ¼öÁ¤
127Çà
if($now_data[name]) {
¸¦
if($now_data[no]) {
·Î ¼öÁ¤
150Çà
<a href=javascript:void(window.open('view_info.php?member_no=<?=$now_data[member_to]?>','view_info','width=400,height=510,toolbar=no,scrollbars=yes'))><?=stripslashes($now_data[name])?></a></td>
¸¦
<a href=javascript:void(window.open('view_info.php?member_no=<?=$now_data[member_to]?>','view_info','width=400,height=510,toolbar=no,scrollbars=yes'))><?=stripslashes($now_data[name])?></a> <font style=font-size:8pt;>(<b>ID</b> : <?=$now_data['user_id']?>)</td>
·Î ¼öÁ¤
158Çà
<?=stripslashes($now_data[subject])?></td>
¸¦
<?=stripslashes(del_html($now_data[subject]))?></td>
·Î ¼öÁ¤
236Çà
$data[subject]=stripslashes($data[subject]);
¸¦
$data[subject]=stripslashes(del_html($data[subject]));
·Î ¼öÁ¤
251Çà
<a href=javascript:void(window.open('view_info.php?member_no=<?=$data[member_to]?>','view_info','width=400,height=510,toolbar=no,scrollbars=yes'))><?=$data[name]?></a></td>
¸¦
<a href=javascript:void(window.open('view_info.php?member_no=<?=$data[member_to]?>','view_info','width=400,height=510,toolbar=no,scrollbars=yes'))><?=$data[name]?></a><br><font style=font-size:8pt;color:999999>(<?=$data['user_id']?>)</td>
·Î ¼öÁ¤
8. member_modify_ok.php
(ÀÌ°Ç 3¹øÀ̶û Áߺ¹À̳׿ä;;; ¿£Áö¿À¿¡¼ Âø°¢À» Çѵí...)
26Çà
$name = addslashes($name);
$job = addslashes($job);
$email = addslashes($email);
if($_zbDefaultSetup[check_email]=="true"&&!mail_mx_check($email)) Error("ÀÔ·ÂÇϽŠ$email Àº Á¸ÀçÇÏÁö ¾Ê´Â ¸ÞÀÏÁÖ¼ÒÀÔ´Ï´Ù.<br>´Ù½Ã Çѹø È®ÀÎÇÏ¿© Áֽñ⠹ٶø´Ï´Ù.");
if(!eregi("http://",$homepage)&&$homepage) $homepage="http://$homepage";
$homepage = addslashes($homepage);
$birth = addslashes($birth);
$hobby = addslashes($hobby);
$icq = addslashes($icq);
$msn = addslashes($msn);
$home_address = addslashes($home_address);
$home_tel = addslashes($home_tel);
$office_address = addslashes($office_address);
$office_tel = addslashes($office_tel);
$handphone = addslashes($handphone);
$comment = addslashes($comment);
¸¦
$name = addslashes(del_html($name));
$job = addslashes(del_html($job));
$email = addslashes(del_html($email));
if($_zbDefaultSetup[check_email]=="true"&&!mail_mx_check($email)) Error("ÀÔ·ÂÇϽŠ$email Àº Á¸ÀçÇÏÁö ¾Ê´Â ¸ÞÀÏÁÖ¼ÒÀÔ´Ï´Ù.<br>´Ù½Ã Çѹø È®ÀÎÇÏ¿© Áֽñ⠹ٶø´Ï´Ù.");
if(!eregi("http://",$homepage)&&$homepage) $homepage="http://$homepage";
$homepage = addslashes(del_html($homepage));
$birth = addslashes(del_html($birth));
$hobby = addslashes(del_html($hobby));
$icq = addslashes(del_html($icq));
$msn = addslashes(del_html($msn));
$home_address = addslashes(del_html($home_address));
$home_tel = addslashes(del_html($home_tel));
$office_address = addslashes(del_html($office_address));
$office_tel = addslashes(del_html($office_tel));
$handphone = addslashes(del_html($handphone));
$comment = addslashes(del_html($comment));
·Î ¼öÁ¤
79Çà
if(!eregi(".gif",$picture_name)&&!eregi(".jpg",$picture_name)) Error("»çÁøÀº gif ¶Ç´Â jpg ÆÄÀÏÀ» ¿Ã·ÁÁÖ¼¼¿ä");
¸¦
if(!eregi(".gif\$",$picture_name)&&!eregi(".jpg\$",$picture_name)) Error("»çÁøÀº gif ¶Ç´Â jpg ÆÄÀÏÀ» ¿Ã·ÁÁÖ¼¼¿ä");
·Î ¼öÁ¤
9. license.txt
³¯Â¥¿Í ¹öÀü ¹øÈ£¸¸ ¹Ù²ãÁÖ¸é µË´Ï´Ù.