diff --git a/adm/shop_admin/bannerform.php b/adm/shop_admin/bannerform.php
index b06b667cb..ba5bf6ac0 100644
--- a/adm/shop_admin/bannerform.php
+++ b/adm/shop_admin/bannerform.php
@@ -4,6 +4,8 @@ include_once('./_common.php');
 
 auth_check($auth[$sub_menu], "w");
 
+$bn_id = preg_replace('/[^0-9]/', '', $bn_id);
+
 $html_title = '배너';
 $g5['title'] = $html_title.'관리';
 
diff --git a/adm/shop_admin/itemeventform.php b/adm/shop_admin/itemeventform.php
index 1330695f6..980ac73c6 100644
--- a/adm/shop_admin/itemeventform.php
+++ b/adm/shop_admin/itemeventform.php
@@ -5,6 +5,8 @@ include_once(G5_EDITOR_LIB);
 
 auth_check($auth[$sub_menu], "w");
 
+$ev_id = preg_replace('/[^0-9]/', '', $ev_id);
+
 $html_title = "이벤트";
 $g5['title'] = $html_title.' 관리';
 
diff --git a/adm/shop_admin/itemeventlist.php b/adm/shop_admin/itemeventlist.php
index 420cf5e95..2322b791a 100644
--- a/adm/shop_admin/itemeventlist.php
+++ b/adm/shop_admin/itemeventlist.php
@@ -4,6 +4,12 @@ include_once('./_common.php');
 
 auth_check($auth[$sub_menu], "r");
 
+$ev_id = preg_replace('/[^0-9]/', '', $ev_id);
+$sort1 = strip_tags($sort1);
+$sel_field = strip_tags($sel_field);
+$sel_ca_id = get_search_string($sel_ca_id);
+$search = get_search_string($search);
+
 $g5['title'] = '이벤트일괄처리';
 include_once (G5_ADMIN_PATH.'/admin.head.php');
 
@@ -42,7 +48,7 @@ if (!$sort1) {
     $sort1 = "b.ev_id";
 }
 
-if (!$sort2) {
+if (!$sort2 || $sort2 != "asc") {
     $sort2 = "desc";
 }
 
diff --git a/adm/shop_admin/itemsellrank.php b/adm/shop_admin/itemsellrank.php
index f77c8adac..c11f64393 100644
--- a/adm/shop_admin/itemsellrank.php
+++ b/adm/shop_admin/itemsellrank.php
@@ -11,7 +11,10 @@ include_once(G5_PLUGIN_PATH.'/jquery-ui/datepicker.php');
 if (!$to_date) $to_date = date("Ymd", time());
 
 if ($sort1 == "") $sort1 = "ct_status_sum";
-if ($sort2 == "") $sort2 = "desc";
+if ($sort2 == "" || $sort2 != "asc") $sort2 = "desc";
+
+$doc = strip_tags($doc);
+$sort1 = strip_tags($sort1);
 
 $sql  = " select a.it_id,
                  b.*,
diff --git a/adm/shop_admin/itemstocklist.php b/adm/shop_admin/itemstocklist.php
index e38046e49..049687fe0 100644
--- a/adm/shop_admin/itemstocklist.php
+++ b/adm/shop_admin/itemstocklist.php
@@ -4,6 +4,13 @@ include_once('./_common.php');
 
 auth_check($auth[$sub_menu], "r");
 
+$doc = strip_tags($doc);
+$sort1 = strip_tags($sort1);
+$sort2 = in_array($sort2, array('desc', 'asc')) ? $sort2 : 'desc';
+$sel_ca_id = get_search_string($sel_ca_id);
+$sel_field = get_search_string($sel_field);
+$search = get_search_string($search);
+
 $g5['title'] = '상품재고관리';
 include_once (G5_ADMIN_PATH.'/admin.head.php');
 
diff --git a/adm/shop_admin/itemstocksms.php b/adm/shop_admin/itemstocksms.php
index e6f15f3d3..d3cd0f5df 100644
--- a/adm/shop_admin/itemstocksms.php
+++ b/adm/shop_admin/itemstocksms.php
@@ -33,7 +33,12 @@ if ($search != "") {
 
 if ($sel_field == "")  $sel_field = "it_it";
 if ($sort1 == "") $sort1 = "ss_send";
-if ($sort2 == "") $sort2 = "asc";
+if ($sort2 == "" || $sort2 != "desc") $sort2 = "asc";
+
+$doc = strip_tags($doc);
+$sort1 = strip_tags($sort1);
+$sel_field = strip_tags($sel_field);
+$search = get_search_string($search);
 
 $sql_common = "  from {$g5['g5_shop_item_stocksms_table']} ";
 
diff --git a/adm/shop_admin/itemtypelist.php b/adm/shop_admin/itemtypelist.php
index e38a5b1da..7cf0ed010 100644
--- a/adm/shop_admin/itemtypelist.php
+++ b/adm/shop_admin/itemtypelist.php
@@ -4,6 +4,8 @@ include_once('./_common.php');
 
 auth_check($auth[$sub_menu], "r");
 
+$doc = strip_tags($doc);
+
 $g5['title'] = '상품유형관리';
 include_once (G5_ADMIN_PATH.'/admin.head.php');
 
diff --git a/adm/shop_admin/optionstocklist.php b/adm/shop_admin/optionstocklist.php
index 358cdd8dd..e31e2f36e 100644
--- a/adm/shop_admin/optionstocklist.php
+++ b/adm/shop_admin/optionstocklist.php
@@ -4,6 +4,13 @@ include_once('./_common.php');
 
 auth_check($auth[$sub_menu], "r");
 
+$doc = strip_tags($doc);
+$sort1 = strip_tags($sort1);
+$sort2 = in_array($sort2, array('desc', 'asc')) ? $sort2 : 'desc';
+$sel_ca_id = get_search_string($sel_ca_id);
+$sel_field = get_search_string($sel_field);
+$search = get_search_string($search);
+
 $g5['title'] = '상품옵션재고관리';
 include_once (G5_ADMIN_PATH.'/admin.head.php');
 
diff --git a/adm/shop_admin/orderlist.php b/adm/shop_admin/orderlist.php
index 78bd50c3d..0bedc1e2a 100644
--- a/adm/shop_admin/orderlist.php
+++ b/adm/shop_admin/orderlist.php
@@ -10,6 +10,15 @@ include_once(G5_PLUGIN_PATH.'/jquery-ui/datepicker.php');
 
 $where = array();
 
+$doc = strip_tags($doc);
+$sort1 = strip_tags($sort1);
+$sort2 = in_array($sort2, array('desc', 'asc')) ? $sort2 : 'desc';
+$sel_field = get_search_string($sel_field);
+$od_status = get_search_string($od_status);
+$search = get_search_string($search);
+if(! preg_match("/^[0-9]{4}-(0[1-9]|1[0-2])-(0[1-9]|[1-2][0-9]|3[0-1])$/", $fr_date) ) $fr_date = '';
+if(! preg_match("/^[0-9]{4}-(0[1-9]|1[0-2])-(0[1-9]|[1-2][0-9]|3[0-1])$/", $to_date) ) $to_date = '';
+
 $sql_search = "";
 if ($search != "") {
     if ($sel_field != "") {
diff --git a/adm/shop_admin/wishlist.php b/adm/shop_admin/wishlist.php
index 7689f7b04..8c8a6b3cd 100644
--- a/adm/shop_admin/wishlist.php
+++ b/adm/shop_admin/wishlist.php
@@ -10,8 +10,15 @@ include_once(G5_PLUGIN_PATH.'/jquery-ui/datepicker.php');
 
 if (!$to_date) $to_date = date("Ymd", time());
 
+$doc = strip_tags($doc);
+$sort1 = strip_tags($sort1);
+$sel_ca_id = get_search_string($sel_ca_id);
+
+if( preg_match("/[^0-9]/", $fr_date) ) $fr_date = '';
+if( preg_match("/[^0-9]/", $to_date) ) $to_date = '';
+
 if ($sort1 == "") $sort1 = "it_id_cnt";
-if ($sort2 == "") $sort2 = "desc";
+if ($sort2 == "" || $sort2 != "asc") $sort2 = "desc";
 
 $sql  = " select a.it_id,
                  b.it_name,
diff --git a/shop/itemqaform.php b/shop/itemqaform.php
index a1e2eb384..b488f590a 100644
--- a/shop/itemqaform.php
+++ b/shop/itemqaform.php
@@ -13,8 +13,8 @@ if (!$is_member) {
 }
 
 $w     = trim($_REQUEST['w']);
-$it_id = trim($_REQUEST['it_id']);
-$iq_id = trim($_REQUEST['iq_id']);
+$it_id = get_search_string(trim($_REQUEST['it_id']));
+$iq_id = preg_replace('/[^0-9]/', '', trim($_REQUEST['iq_id']));
 
 // 상품정보체크
 $sql = " select it_id from {$g5['g5_shop_item_table']} where it_id = '$it_id' ";
diff --git a/shop/itemqaformupdate.php b/shop/itemqaformupdate.php
index 71c313050..b1764ed4d 100644
--- a/shop/itemqaformupdate.php
+++ b/shop/itemqaformupdate.php
@@ -12,7 +12,7 @@ $iq_answer = trim($_POST['iq_answer']);
 $hash = trim($_REQUEST['hash']);
 
 if ($w == "" || $w == "u") {
-    $iq_name     = addslashes($member['mb_name']);
+    $iq_name     = addslashes(strip_tags($member['mb_name']));
     $iq_password = $member['mb_password'];
 
     if (!$iq_subject) alert("제목을 입력하여 주십시오.");
diff --git a/shop/itemuseform.php b/shop/itemuseform.php
index eb9fcf5e4..f97d19529 100644
--- a/shop/itemuseform.php
+++ b/shop/itemuseform.php
@@ -13,8 +13,8 @@ if (!$is_member) {
 }
 
 $w     = trim($_REQUEST['w']);
-$it_id = trim($_REQUEST['it_id']);
-$is_id = trim($_REQUEST['is_id']);
+$it_id = get_search_string(trim($_REQUEST['it_id']));
+$is_id = preg_replace('/[^0-9]/', '', trim($_REQUEST['is_id']));
 
 // 상품정보체크
 $sql = " select it_id from {$g5['g5_shop_item_table']} where it_id = '$it_id' ";
diff --git a/shop/itemuseformupdate.php b/shop/itemuseformupdate.php
index 45ddb11c2..6d3537282 100644
--- a/shop/itemuseformupdate.php
+++ b/shop/itemuseformupdate.php
@@ -16,7 +16,7 @@ $is_score    = (int)$_POST['is_score'] > 5 ? 0 : (int)$_POST['is_score'];
 check_itemuse_write($it_id, $member['mb_id']);
 
 if ($w == "" || $w == "u") {
-    $is_name     = addslashes($member['mb_name']);
+    $is_name     = addslashes(strip_tags($member['mb_name']));
     $is_password = $member['mb_password'];
 
     if (!$is_subject) alert("제목을 입력하여 주십시오.");