From 51b8f79c2b8543f9e9762c9afc18c9c4587518ef Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@gmail.com>
Date: Mon, 10 Nov 2014 15:00:52 +0900
Subject: [PATCH] =?UTF-8?q?=EC=A3=BC=EB=AC=B8=ED=8F=BC=EC=9D=84=20?=
 =?UTF-8?q?=EC=9D=B4=EC=9A=A9=ED=95=9C=20XSS=20=EB=8C=80=EC=9D=91=20?=
 =?UTF-8?q?=EC=BD=94=EB=93=9C=20=EC=B6=94=EA=B0=80?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 mobile/shop/orderformupdate.php | 1 +
 shop/orderformupdate.php        | 1 +
 2 files changed, 2 insertions(+)

diff --git a/mobile/shop/orderformupdate.php b/mobile/shop/orderformupdate.php
index c4334fc0f..4a9d8ed98 100644
--- a/mobile/shop/orderformupdate.php
+++ b/mobile/shop/orderformupdate.php
@@ -432,6 +432,7 @@ $od_b_addr2       = clean_xss_tags($od_b_addr2);
 $od_b_addr3       = clean_xss_tags($od_b_addr3);
 $od_b_addr_jibeon = preg_match("/^(N|R)$/", $od_b_addr_jibeon) ? $od_b_addr_jibeon : '';
 $od_memo          = clean_xss_tags($od_memo);
+$od_deposit_name  = clean_xss_tags($od_deposit_name);
 
 // 주문서에 입력
 $sql = " insert {$g5['g5_shop_order_table']}
diff --git a/shop/orderformupdate.php b/shop/orderformupdate.php
index 2188a5f61..0598614da 100644
--- a/shop/orderformupdate.php
+++ b/shop/orderformupdate.php
@@ -426,6 +426,7 @@ $od_b_addr2       = clean_xss_tags($od_b_addr2);
 $od_b_addr3       = clean_xss_tags($od_b_addr3);
 $od_b_addr_jibeon = preg_match("/^(N|R)$/", $od_b_addr_jibeon) ? $od_b_addr_jibeon : '';
 $od_memo          = clean_xss_tags($od_memo);
+$od_deposit_name  = clean_xss_tags($od_deposit_name);
 
 // 주문서에 입력
 $sql = " insert {$g5['g5_shop_order_table']}