php8.0 버전 호환 코드 적용 및 PHP 끝 태그 삭제 일괄적용

2021-01-04 15:39:15 +09:00
parent 131b170b54
commit 27e9af5e42
1009 changed files with 12120 additions and 10849 deletions
--- a/adm/shop_admin/orderlist.php
+++ b/adm/shop_admin/orderlist.php
@ -2,7 +2,7 @@
 $sub_menu = '400400';
 include_once('./_common.php');

-auth_check($auth[$sub_menu], "r");
+auth_check_menu($auth, $sub_menu, "r");

 $g5['title'] = '주문내역';
 include_once (G5_ADMIN_PATH.'/admin.head.php');
@ -10,24 +10,25 @@ include_once(G5_PLUGIN_PATH.'/jquery-ui/datepicker.php');

 $where = array();

-$doc = strip_tags($doc);
-$sort1 = in_array($sort1, array('od_id', 'od_cart_price', 'od_receipt_price', 'od_cancel_price', 'od_misu', 'od_cash')) ? $sort1 : '';
-$sort2 = in_array($sort2, array('desc', 'asc')) ? $sort2 : 'desc';
-$sel_field = get_search_string($sel_field);
-if( !in_array($sel_field, array('od_id', 'mb_id', 'od_name', 'od_tel', 'od_hp', 'od_b_name', 'od_b_tel', 'od_b_hp', 'od_deposit_name', 'od_invoice')) ){   //검색할 필드 대상이 아니면 값을 제거
-    $sel_field = '';
-}
-$od_status = get_search_string($od_status);
-$search = get_search_string($search);
-if(! preg_match("/^[0-9]{4}-(0[1-9]|1[0-2])-(0[1-9]|[1-2][0-9]|3[0-1])$/", $fr_date) ) $fr_date = '';
-if(! preg_match("/^[0-9]{4}-(0[1-9]|1[0-2])-(0[1-9]|[1-2][0-9]|3[0-1])$/", $to_date) ) $to_date = '';
+$doc = isset($_GET['doc']) ? clean_xss_tags($_GET['doc'], 1, 1) : '';
+$sort1 = (isset($_GET['sort1']) && in_array($_GET['sort1'], array('od_id', 'od_cart_price', 'od_receipt_price', 'od_cancel_price', 'od_misu', 'od_cash'))) ? $_GET['sort1'] : '';
+$sort2 = (isset($_GET['sort2']) && in_array($_GET['sort2'], array('desc', 'asc'))) ? $_GET['sort2'] : 'desc';
+$sel_field = (isset($_GET['sel_field']) && in_array($_GET['sel_field'], array('od_id', 'mb_id', 'od_name', 'od_tel', 'od_hp', 'od_b_name', 'od_b_tel', 'od_b_hp', 'od_deposit_name', 'od_invoice')) ) ? $_GET['sel_field'] : ''; 
+$od_status = isset($_GET['od_status']) ? get_search_string($_GET['od_status']) : '';
+$search = isset($_GET['search']) ? get_search_string($_GET['search']) : '';

-$od_misu = preg_replace('/[^0-9a-z]/i', '', $od_misu);
-$od_cancel_price = preg_replace('/[^0-9a-z]/i', '', $od_cancel_price);
-$od_refund_price = preg_replace('/[^0-9a-z]/i', '', $od_refund_price);
-$od_receipt_point = preg_replace('/[^0-9a-z]/i', '', $od_receipt_point);
-$od_coupon = preg_replace('/[^0-9a-z]/i', '', $od_coupon); 
+$fr_date = (isset($_GET['fr_date']) && preg_match("/^[0-9]{4}-(0[1-9]|1[0-2])-(0[1-9]|[1-2][0-9]|3[0-1])$/", $_GET['fr_date'])) ? $_GET['fr_date'] : '';
+$to_date = (isset($_GET['to_date']) && preg_match("/^[0-9]{4}-(0[1-9]|1[0-2])-(0[1-9]|[1-2][0-9]|3[0-1])$/", $_GET['to_date'])) ? $_GET['to_date'] : '';

+$od_misu = isset($_GET['od_misu']) ? preg_replace('/[^0-9a-z]/i', '', $_GET['od_misu']) : '';
+$od_cancel_price = isset($_GET['od_cancel_price']) ? preg_replace('/[^0-9a-z]/', '', $_GET['od_cancel_price']) : '';
+$od_refund_price = isset($_GET['od_refund_price']) ? preg_replace('/[^0-9a-z]/i', '', $_GET['od_refund_price']) : '';
+$od_receipt_point = isset($_GET['od_receipt_point']) ? preg_replace('/[^0-9a-z]/i', '', $_GET['od_receipt_point']) : '';
+$od_coupon = isset($_GET['od_coupon']) ? preg_replace('/[^0-9a-z]/i', '', $_GET['od_coupon']) : ''; 
+$od_settle_case = isset($_GET['od_settle_case']) ? clean_xss_tags($_GET['od_settle_case'], 1, 1) : ''; 
+$od_escrow = isset($_GET['od_escrow']) ? clean_xss_tags($_GET['od_escrow'], 1, 1) : ''; 
+
+$tot_itemcount = $tot_orderprice = $tot_receiptprice = $tot_ordercancel = $tot_misu = $tot_couponprice = 0;
 $sql_search = "";
 if ($search != "") {
    if ($sel_field != "") {
@ -506,7 +507,7 @@ $(function(){
        var $this = $(this);
        var od_id = $this.text().replace(/[^0-9]/g, "");

-        if($this.next("#orderitemlist").size())
+        if($this.next("#orderitemlist").length)
            return false;

        $("#orderitemlist").remove();
@ -679,5 +680,4 @@ function forderlist_submit(f)
 </script>

 <?php
-include_once (G5_ADMIN_PATH.'/admin.tail.php');
-?>
+include_once (G5_ADMIN_PATH.'/admin.tail.php');