diff --git a/adm/faqformupdate.php b/adm/faqformupdate.php index 2b54d1879..a68984bcf 100644 --- a/adm/faqformupdate.php +++ b/adm/faqformupdate.php @@ -12,11 +12,11 @@ else check_admin_token(); -$fm_id = isset($_POST['fm_id']) ? (int) $_POST['fm_id'] : 0; +$fm_id = isset($_REQUEST['fm_id']) ? (int) $_REQUEST['fm_id'] : 0; +$fa_id = isset($_REQUEST['fa_id']) ? (int) $_REQUEST['fa_id'] : 0; $fa_subject = isset($_POST['fa_subject']) ? $_POST['fa_subject'] : ''; $fa_content = isset($_POST['fa_content']) ? $_POST['fa_content'] : ''; $fa_order = isset($_POST['fa_order']) ? (int) $_POST['fa_order'] : 0; -$fa_id = isset($_POST['fa_id']) ? (int) $_POST['fa_id'] : 0; $sql_common = " fa_subject = '$fa_subject', fa_content = '$fa_content', diff --git a/adm/faqmasterformupdate.php b/adm/faqmasterformupdate.php index bdc3c39a1..9c26300c7 100644 --- a/adm/faqmasterformupdate.php +++ b/adm/faqmasterformupdate.php @@ -15,7 +15,7 @@ check_admin_token(); @mkdir(G5_DATA_PATH."/faq", G5_DIR_PERMISSION); @chmod(G5_DATA_PATH."/faq", G5_DIR_PERMISSION); -$fm_id = isset($_POST['fm_id']) ? (int) $_POST['fm_id'] : 0; +$fm_id = isset($_REQUEST['fm_id']) ? (int) $_REQUEST['fm_id'] : 0; $fm_himg_del = isset($_POST['fm_himg_del']) ? (int) $_POST['fm_himg_del'] : 0; $fm_timg_del = isset($_POST['fm_timg_del']) ? (int) $_POST['fm_timg_del'] : 0; $fm_subject = isset($_POST['fm_subject']) ? strip_tags(clean_xss_attributes($_POST['fm_subject'])) : ''; diff --git a/adm/view.php b/adm/view.php index 057eea104..58db281e8 100644 --- a/adm/view.php +++ b/adm/view.php @@ -2,6 +2,7 @@ include_once('./_common.php'); $call = isset($_REQUEST['call']) ? strtolower(preg_replace('/[^a-z0-9_]/i', '', $_REQUEST['call'])) : ''; +$token = isset($_REQUEST['token']) ? clean_xss_tags($_REQUEST['token'], 1, 1) : ''; if( ! $call ){ return; diff --git a/bbs/content.php b/bbs/content.php index b74670150..6d91c1387 100644 --- a/bbs/content.php +++ b/bbs/content.php @@ -12,12 +12,12 @@ if( !isset($g5['content_table']) ){ // 내용 if($co_seo_title){ $co = get_content_by_field($g5['content_table'], 'content', 'co_seo_title', generate_seo_title($co_seo_title)); - $co_id = $co['co_id']; + $co_id = isset($co['co_id']) ? $co['co_id'] : 0; } else { $co = get_content_db($co_id); } -if( ! (isset($co['co_seo_title']) && $co['co_seo_title']) && $co['co_id'] ){ +if( ! (isset($co['co_seo_title']) && $co['co_seo_title']) && isset($co['co_id']) && $co['co_id'] ){ seo_title_update($g5['content_table'], $co['co_id'], 'content'); } diff --git a/bbs/view.php b/bbs/view.php index 719f18476..d78fa7b0e 100644 --- a/bbs/view.php +++ b/bbs/view.php @@ -28,7 +28,7 @@ if (!$board['bo_use_list_view']) { $sql = " select wr_id, wr_subject, wr_datetime from {$write_table} where wr_is_comment = 0 and wr_num = '{$write['wr_num']}' and wr_reply < '{$write['wr_reply']}' {$sql_search} order by wr_num desc, wr_reply desc limit 1 "; $prev = sql_fetch($sql); // 위의 쿼리문으로 값을 얻지 못했다면 - if (isset($prev['wr_id']) && !$prev['wr_id']) { + if (! (isset($prev['wr_id']) && $prev['wr_id'])) { $sql = " select wr_id, wr_subject, wr_datetime from {$write_table} where wr_is_comment = 0 and wr_num < '{$write['wr_num']}' {$sql_search} order by wr_num desc, wr_reply desc limit 1 "; $prev = sql_fetch($sql); } @@ -37,7 +37,7 @@ if (!$board['bo_use_list_view']) { $sql = " select wr_id, wr_subject, wr_datetime from {$write_table} where wr_is_comment = 0 and wr_num = '{$write['wr_num']}' and wr_reply > '{$write['wr_reply']}' {$sql_search} order by wr_num, wr_reply limit 1 "; $next = sql_fetch($sql); // 위의 쿼리문으로 값을 얻지 못했다면 - if (isset($next['wr_id']) && !$next['wr_id']) { + if (! (isset($next['wr_id']) && $next['wr_id'])) { $sql = " select wr_id, wr_subject, wr_datetime from {$write_table} where wr_is_comment = 0 and wr_num > '{$write['wr_num']}' {$sql_search} order by wr_num, wr_reply limit 1 "; $next = sql_fetch($sql); } diff --git a/config.php b/config.php index 2228ca355..caa78d1a7 100644 --- a/config.php +++ b/config.php @@ -5,7 +5,7 @@ ********************/ define('G5_VERSION', '그누보드5'); -define('G5_GNUBOARD_VER', '5.4.4.4'); +define('G5_GNUBOARD_VER', '5.4.4.5'); // 이 상수가 정의되지 않으면 각각의 개별 페이지는 별도로 실행될 수 없음 define('_GNUBOARD_', true);