firstgarden/firstgarden-web-gnu
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Activity

사용자 코드 체크 및 정리

Browse Source
This commit is contained in:
chicpro
2014-03-26 17:14:30 +09:00
parent e61c402067
commit 1c9f0f6018
19 changed files with 65 additions and 51 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
bbs/link.php
View File

@ -1,23 +1,23 @@
<?php
include_once('./_common.php');
$html_title = '링크 &gt; '.conv_subject($write[wr_subject], 255);
$html_title = '링크 &gt; '.conv_subject($write['wr_subject'], 255);
if (!($bo_table && $wr_id && $no))
if (!($bo_table && $wr_id && $no))
alert_close('값이 제대로 넘어오지 않았습니다.');
// SQL Injection 예방
$row = sql_fetch(" select count(*) as cnt from {$g5[write_prefix]}{$bo_table} ", FALSE);
if (!$row[cnt])
$row = sql_fetch(" select count(*) as cnt from {$g5['write_prefix']}{$bo_table} ", FALSE);
if (!$row['cnt'])
alert_close('존재하는 게시판이 아닙니다.');
if (!$write['wr_link'.$no])
alert_close('링크가 없습니다.');
$ss_name = 'ss_link_'.$bo_table.'_'.$wr_id.'_'.$no;
if (empty($_SESSION[$ss_name]))
if (empty($_SESSION[$ss_name]))
{
$sql = " update {$g5[write_prefix]}{$bo_table} set wr_link{$no}_hit = wr_link{$no}_hit + 1 where wr_id = '{$wr_id}' ";
$sql = " update {$g5['write_prefix']}{$bo_table} set wr_link{$no}_hit = wr_link{$no}_hit + 1 where wr_id = '{$wr_id}' ";
sql_query($sql);
set_session($ss_name, true);