diff --git a/mobile/shop/orderform.sub.php b/mobile/shop/orderform.sub.php
index e6f9008b9..7033185d3 100644
--- a/mobile/shop/orderform.sub.php
+++ b/mobile/shop/orderform.sub.php
@@ -1444,8 +1444,8 @@ function pay_approval()
                 break;
         }
         f.method.value = pay_method;
-        f.orderId.value = '<?=$od_id?>';
-        f.orderName.value = '<?=$goods?>';
+        f.orderId.value = "<?php echo $od_id; ?>";
+        f.orderName.value = "<?php echo $goods; ?>";
 
         f.customerName.value = pf.od_name.value;
         f.customerEmail.value = pf.od_email.value;
@@ -1468,6 +1468,10 @@ function pay_approval()
 
         f.amountCurrency.value = 'KRW';
         f.amountValue.value = f.good_mny.value;
+        if (pf && pf.amountValue) {
+            pf.amountValue.value = f.good_mny.value;
+        }
+        
         <?php if($default['de_tax_flag_use']) { ?>
         f.taxFreeAmount.value = pf.comm_free_mny.value;
         <?php } ?>
diff --git a/shop/toss/toss_result.php b/shop/toss/toss_result.php
index 6e86aa212..e22bcf64d 100644
--- a/shop/toss/toss_result.php
+++ b/shop/toss/toss_result.php
@@ -16,9 +16,9 @@ $row = sql_fetch($sql);
 
 $data = isset($row['dt_data']) ? unserialize(base64_decode($row['dt_data'])) : array();
 
-$amount = isset($data['amountValue']) ? $data['amountValue'] : 0;
+$amount = isset($data['amountValue']) ? (int)$data['amountValue'] : 0;
 
-if ($amount <= 0) {
+if ($amount <= 0 || $amount !== (int)$order_price) {
     alert('결제금액이 올바르지 않습니다.', G5_SHOP_URL);
 }