From 92210edc161b97b59e095757140488a0535c15f4 Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Tue, 12 Jan 2016 09:59:04 +0900
Subject: [PATCH] =?UTF-8?q?sca=20=ED=95=84=ED=84=B0=EB=A7=81=20=EC=BD=94?=
 =?UTF-8?q?=EB=93=9C=20=EC=B6=94=EA=B0=80?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 common.php | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/common.php b/common.php
index 079473bf3..9352ce75a 100644
--- a/common.php
+++ b/common.php
@@ -227,8 +227,10 @@ $qstr = '';
 
 if (isset($_REQUEST['sca']))  {
     $sca = clean_xss_tags(trim($_REQUEST['sca']));
-    if ($sca)
+    if ($sca) {
+        $sca = preg_replace("/[\<\>\'\"\\\'\\\"\%\=\(\)\s]/", "", $sca);
         $qstr .= '&amp;sca=' . urlencode($sca);
+    }
 } else {
     $sca = '';
 }