From 574f3788cb7b029cb15f9d2f77ac4dfb402ce994 Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Tue, 11 Aug 2015 09:13:19 +0900
Subject: [PATCH] =?UTF-8?q?xss=20=EC=B7=A8=EC=95=BD=EC=A0=90=20=EC=88=98?=
 =?UTF-8?q?=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 shop/orderinquirycancel.php | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/shop/orderinquirycancel.php b/shop/orderinquirycancel.php
index 5c269edcf..9342ccb38 100644
--- a/shop/orderinquirycancel.php
+++ b/shop/orderinquirycancel.php
@@ -6,7 +6,8 @@ if ($token && get_session("ss_token") == $token) {
     // 맞으면 세션을 지워 다시 입력폼을 통해서 들어오도록 한다.
     set_session("ss_token", "");
 } else {
-    alert_close("토큰 에러");
+    set_session("ss_token", "");
+    alert("토큰 에러", G5_SHOP_URL);
 }
 
 $od = sql_fetch(" select * from {$g5['g5_shop_order_table']} where od_id = '$od_id' and mb_id = '{$member['mb_id']}' ");
@@ -132,7 +133,7 @@ if($od['od_tno']) {
 sql_query(" update {$g5['g5_shop_cart_table']} set ct_status = '취소' where od_id = '$od_id' ");
 
 // 주문 취소
-$cancel_memo = addslashes($cancel_memo);
+$cancel_memo = addslashes(strip_tags($cancel_memo));
 $cancel_price = $od['od_cart_price'];
 
 $sql = " update {$g5['g5_shop_order_table']}