diff --git a/adm/shop_admin/couponformupdate.php b/adm/shop_admin/couponformupdate.php index f5ddb3fb2..9d63f6db8 100644 --- a/adm/shop_admin/couponformupdate.php +++ b/adm/shop_admin/couponformupdate.php @@ -139,7 +139,7 @@ if($w == '') { } // 쿠폰생성알림 발송 -if($w == '' && ($_POST['cp_sms_send'] || $_POST['cp_email_send'])) { +if ($w == '' && (isset($_POST['cp_sms_send']) || isset($_POST['cp_email_send']))) { include_once(G5_LIB_PATH.'/mailer.lib.php'); $sms_count = 0; diff --git a/adm/shop_admin/itemlistupdate.php b/adm/shop_admin/itemlistupdate.php index 720a4979a..0bb4d393b 100644 --- a/adm/shop_admin/itemlistupdate.php +++ b/adm/shop_admin/itemlistupdate.php @@ -35,8 +35,8 @@ if ($post_act_button == "선택수정") { $p_it_stock_qty = (isset($_POST['it_stock_qty']) && is_array($_POST['it_stock_qty'])) ? strip_tags($_POST['it_stock_qty'][$k]) : ''; $p_it_skin = (isset($_POST['it_skin']) && is_array($_POST['it_skin'])) ? strip_tags($_POST['it_skin'][$k]) : ''; $p_it_mobile_skin = (isset($_POST['it_mobile_skin']) && is_array($_POST['it_mobile_skin'])) ? strip_tags($_POST['it_mobile_skin'][$k]) : ''; - $p_it_use = (isset($_POST['it_use']) && is_array($_POST['it_use'])) ? strip_tags($_POST['it_use'][$k]) : ''; - $p_it_soldout = (isset($_POST['it_soldout']) && is_array($_POST['it_soldout'])) ? strip_tags($_POST['it_soldout'][$k]) : ''; + $p_it_use = isset($_POST['it_use'][$k]) ? clean_xss_tags($_POST['it_use'][$k], 1, 1) : 0; + $p_it_soldout = isset($_POST['it_soldout'][$k]) ? clean_xss_tags($_POST['it_soldout'][$k], 1, 1) : 0; $p_it_order = (isset($_POST['it_order']) && is_array($_POST['it_order'])) ? strip_tags($_POST['it_order'][$k]) : ''; $p_it_id = isset($_POST['it_id'][$k]) ? preg_replace('/[^a-z0-9_\-]/i', '', $_POST['it_id'][$k]) : ''; diff --git a/adm/sms_admin/num_book_file_upload.php b/adm/sms_admin/num_book_file_upload.php index 0c07d9ea9..bcc8f8665 100644 --- a/adm/sms_admin/num_book_file_upload.php +++ b/adm/sms_admin/num_book_file_upload.php @@ -74,13 +74,13 @@ for ($i = 1; $i <= $num_rows; $i++) { switch ($ext) { case '.csv' : - $name = $csv[$i][0]; + $name = isset($csv[$i][0]) ? $csv[$i][0] : ''; $str_encode = @mb_detect_encoding($name, $encode); if( $str_encode == "EUC-KR" ){ $name = iconv_utf8( $name ); } $name = addslashes($name); - $hp = addslashes($csv[$i][1]); + $hp = addslashes(isset($csv[$i][1]) ? $csv[$i][1] : ''); break; case '.xls' : case '.xlsx' : diff --git a/adm/sms_admin/number_move_update.php b/adm/sms_admin/number_move_update.php index f1925645f..4118dd96a 100644 --- a/adm/sms_admin/number_move_update.php +++ b/adm/sms_admin/number_move_update.php @@ -1,4 +1,5 @@ 1) $sql = " select mb_no, mb_id, mb_name, mb_nick, mb_email, mb_datetime, mb_leave_date from {$g5['member_table']} where mb_email = '$email' "; $mb = sql_fetch($sql); -if (!$mb['mb_id'] || $mb['mb_leave_date']) +if (empty($mb['mb_id']) || $mb['mb_leave_date']) { alert('존재하지 않는 회원입니다.'); -else if (is_admin($mb['mb_id'])) +} elseif (is_admin($mb['mb_id'])) { alert('관리자 아이디는 접근 불가합니다.'); +} // 임시비밀번호 발급 $change_password = rand(100000, 999999); diff --git a/bbs/register_form_update.php b/bbs/register_form_update.php index 4374c6566..344856621 100644 --- a/bbs/register_form_update.php +++ b/bbs/register_form_update.php @@ -52,6 +52,7 @@ $mb_profile = isset($_POST['mb_profile']) ? trim($_POST['mb_profile']) $mb_recommend = isset($_POST['mb_recommend']) ? trim($_POST['mb_recommend']) : ""; $mb_mailling = isset($_POST['mb_mailling']) ? trim($_POST['mb_mailling']) : ""; $mb_sms = isset($_POST['mb_sms']) ? trim($_POST['mb_sms']) : ""; +$mb_open = isset($_POST['mb_open']) ? trim($_POST['mb_open']) : "0"; $mb_1 = isset($_POST['mb_1']) ? trim($_POST['mb_1']) : ""; $mb_2 = isset($_POST['mb_2']) ? trim($_POST['mb_2']) : ""; $mb_3 = isset($_POST['mb_3']) ? trim($_POST['mb_3']) : "";