diff --git a/adm/menu_list.php b/adm/menu_list.php index daa86fdaf..2aa88b13c 100644 --- a/adm/menu_list.php +++ b/adm/menu_list.php @@ -73,7 +73,7 @@ $colspan = 7; } $search = array('"', "'"); - $replace = array('"', '''); + $replace = array('"', '''); $me_name = str_replace($search, $replace, $row['me_name']); ?> diff --git a/bbs/move.php b/bbs/move.php index a4631addf..a9441e4b4 100644 --- a/bbs/move.php +++ b/bbs/move.php @@ -55,7 +55,7 @@ for ($i=0; $row=sql_fetch_array($result); $i++) - +
diff --git a/bbs/profile.php b/bbs/profile.php index 158f32ead..30e172b8c 100644 --- a/bbs/profile.php +++ b/bbs/profile.php @@ -17,7 +17,7 @@ if (!$mb['mb_open'] && $is_admin != 'super' && $member['mb_id'] != $mb_id) $g5['title'] = $mb['mb_nick'].'님의 자기소개'; include_once(G5_PATH.'/head.sub.php'); -$mb_nick = get_sideview($mb['mb_id'], $mb['mb_nick'], $mb['mb_email'], $mb['mb_homepage'], $mb['mb_open']); +$mb_nick = get_sideview($mb['mb_id'], get_text($mb['mb_nick']), $mb['mb_email'], $mb['mb_homepage'], $mb['mb_open']); // 회원가입후 몇일째인지? + 1 은 당일을 포함한다는 뜻 $sql = " select (TO_DAYS('".G5_TIME_YMDHIS."') - TO_DAYS('{$mb['mb_datetime']}') + 1) as days "; diff --git a/head.sub.php b/head.sub.php index 5166a8130..1214c1910 100644 --- a/head.sub.php +++ b/head.sub.php @@ -112,7 +112,7 @@ if ($is_member) { // 회원이라면 로그인 중이라는 메세지를 출력 else if ($is_admin == 'group') $sr_admin_msg = "그룹관리자 "; else if ($is_admin == 'board') $sr_admin_msg = "게시판관리자 "; - echo '
'.$sr_admin_msg.$member['mb_nick'].'님 로그인 중 '; + echo '
'.$sr_admin_msg.get_text($member['mb_nick']).'님 로그인 중 '; echo '로그아웃
'; } ?> \ No newline at end of file diff --git a/lib/common.lib.php b/lib/common.lib.php index 02b902414..703f3d2db 100644 --- a/lib/common.lib.php +++ b/lib/common.lib.php @@ -380,7 +380,7 @@ function get_list($write_row, $board, $skin_url, $subject_len=40) else $list['last2'] = substr($list['last2'],5,5); - $list['wr_homepage'] = get_text(addslashes($list['wr_homepage'])); + $list['wr_homepage'] = get_text($list['wr_homepage']); $tmp_name = get_text(cut_str($list['wr_name'], $config['cf_cut_name'])); // 설정된 자리수 만큼만 이름 출력 if ($board['bo_use_sideview']) @@ -1201,11 +1201,6 @@ function get_sideview($mb_id, $name='', $email='', $homepage='') $email = base64_encode($email); $homepage = set_http(clean_xss_tags($homepage)); - $name = preg_replace("/\'/", "", $name); - $name = preg_replace("/\'/", "", $name); - $name = preg_replace("/\"/", """, $name); - $title_name = $name; - $tmp_name = ""; if ($mb_id) { //$tmp_name = "$name"; @@ -1367,10 +1362,16 @@ function cut_str($str, $len, $suffix="…") // TEXT 형식으로 변환 function get_text($str, $html=0) { - /* 3.22 막음 (HTML 체크 줄바꿈시 출력 오류때문) - $source[] = "/ /"; - $target[] = "  "; - */ + $source[] = "<"; + $target[] = "<"; + $source[] = ">"; + $target[] = ">"; + $source[] = "\""; + $target[] = """; + $source[] = "\'"; + $target[] = "'"; + + $str = str_replace($target, $source, $str); // 3.31 // TEXT 출력일 경우 &   등의 코드를 정상으로 출력해 주기 위함 @@ -1378,21 +1379,12 @@ function get_text($str, $html=0) $str = html_symbol($str); } - $source[] = "//"; - $target[] = ">"; - $source[] = "/\"/"; - $target[] = """; - $source[] = "/\'/"; - $target[] = "'"; - //$source[] = "/}/"; $target[] = "}"; if ($html) { - $source[] = "/\n/"; + $source[] = "\n"; $target[] = "
"; } - return preg_replace($source, $target, $str); + return str_replace($source, $target, $str); } @@ -2738,11 +2730,6 @@ function clean_xss_tags($str) { $str = preg_replace('#]*+>#i', '', $str); - $search = array('"', "'"); - $replace = array('"', '''); - - $str = str_replace($search, $replace, $str); - return $str; } diff --git a/lib/outlogin.lib.php b/lib/outlogin.lib.php index 7f2916ec9..912777199 100644 --- a/lib/outlogin.lib.php +++ b/lib/outlogin.lib.php @@ -7,7 +7,7 @@ function outlogin($skin_dir='basic') global $config, $member, $g5, $urlencode, $is_admin, $is_member; if (array_key_exists('mb_nick', $member)) { - $nick = cut_str($member['mb_nick'], $config['cf_cut_name']); + $nick = get_text(cut_str($member['mb_nick'], $config['cf_cut_name'])); } if (array_key_exists('mb_point', $member)) { $point = number_format($member['mb_point']); diff --git a/lib/popular.lib.php b/lib/popular.lib.php index fcb9c0801..b2b264aa6 100644 --- a/lib/popular.lib.php +++ b/lib/popular.lib.php @@ -17,7 +17,7 @@ function popular($skin_dir='basic', $pop_cnt=7, $date_cnt=3) for ($i=0; $row=sql_fetch_array($result); $i++) { $list[$i] = $row; // 스크립트등의 실행금지 - $list[$i]['pp_word'] = get_text($list[$i]['pp_word']); + //$list[$i]['pp_word'] = get_text($list[$i]['pp_word']); } if(preg_match('#^theme/(.+)$#', $skin_dir, $match)) { diff --git a/mobile/skin/member/basic/formmail.skin.php b/mobile/skin/member/basic/formmail.skin.php index 3add8546b..bb1c32e7c 100644 --- a/mobile/skin/member/basic/formmail.skin.php +++ b/mobile/skin/member/basic/formmail.skin.php @@ -13,7 +13,7 @@ add_stylesheet('', - + diff --git a/mobile/skin/popular/basic/popular.skin.php b/mobile/skin/popular/basic/popular.skin.php index 463b3b01c..436883642 100644 --- a/mobile/skin/popular/basic/popular.skin.php +++ b/mobile/skin/popular/basic/popular.skin.php @@ -10,7 +10,7 @@ add_stylesheet('',

인기검색어

diff --git a/mobile/skin/qa/basic/write.skin.php b/mobile/skin/qa/basic/write.skin.php index 39118b80b..adbcbdfbb 100644 --- a/mobile/skin/qa/basic/write.skin.php +++ b/mobile/skin/qa/basic/write.skin.php @@ -53,7 +53,7 @@ add_stylesheet('', 0); @@ -64,7 +64,7 @@ add_stylesheet('', 0); diff --git a/skin/member/basic/formmail.skin.php b/skin/member/basic/formmail.skin.php index 76e7bc910..9f821b06a 100644 --- a/skin/member/basic/formmail.skin.php +++ b/skin/member/basic/formmail.skin.php @@ -14,7 +14,7 @@ add_stylesheet('', - + diff --git a/skin/popular/basic/popular.skin.php b/skin/popular/basic/popular.skin.php index 14fe12281..49e0b99e6 100644 --- a/skin/popular/basic/popular.skin.php +++ b/skin/popular/basic/popular.skin.php @@ -11,7 +11,7 @@ add_stylesheet('',

인기검색어

diff --git a/skin/qa/basic/write.skin.php b/skin/qa/basic/write.skin.php index d81465a50..088914615 100644 --- a/skin/qa/basic/write.skin.php +++ b/skin/qa/basic/write.skin.php @@ -53,7 +53,7 @@ add_stylesheet('', 0); @@ -64,7 +64,7 @@ add_stylesheet('', 0); diff --git a/theme/basic/head.sub.php b/theme/basic/head.sub.php index ebe48081b..fc9159a1e 100644 --- a/theme/basic/head.sub.php +++ b/theme/basic/head.sub.php @@ -89,7 +89,7 @@ if ($is_member) { // 회원이라면 로그인 중이라는 메세지를 출력 else if ($is_admin == 'group') $sr_admin_msg = "그룹관리자 "; else if ($is_admin == 'board') $sr_admin_msg = "게시판관리자 "; - echo '
'.$sr_admin_msg.$member['mb_nick'].'님 로그인 중 '; + echo '
'.$sr_admin_msg.get_text($member['mb_nick']).'님 로그인 중 '; echo '로그아웃
'; } ?> \ No newline at end of file diff --git a/theme/basic/mobile/skin/member/basic/formmail.skin.php b/theme/basic/mobile/skin/member/basic/formmail.skin.php index 3add8546b..bb1c32e7c 100644 --- a/theme/basic/mobile/skin/member/basic/formmail.skin.php +++ b/theme/basic/mobile/skin/member/basic/formmail.skin.php @@ -13,7 +13,7 @@ add_stylesheet('', - + diff --git a/theme/basic/mobile/skin/popular/basic/popular.skin.php b/theme/basic/mobile/skin/popular/basic/popular.skin.php index 463b3b01c..436883642 100644 --- a/theme/basic/mobile/skin/popular/basic/popular.skin.php +++ b/theme/basic/mobile/skin/popular/basic/popular.skin.php @@ -10,7 +10,7 @@ add_stylesheet('',

인기검색어

diff --git a/theme/basic/mobile/skin/qa/basic/write.skin.php b/theme/basic/mobile/skin/qa/basic/write.skin.php index 39118b80b..adbcbdfbb 100644 --- a/theme/basic/mobile/skin/qa/basic/write.skin.php +++ b/theme/basic/mobile/skin/qa/basic/write.skin.php @@ -53,7 +53,7 @@ add_stylesheet('', 0); @@ -64,7 +64,7 @@ add_stylesheet('', 0); diff --git a/theme/basic/skin/member/basic/formmail.skin.php b/theme/basic/skin/member/basic/formmail.skin.php index 76e7bc910..5d1ec65b5 100644 --- a/theme/basic/skin/member/basic/formmail.skin.php +++ b/theme/basic/skin/member/basic/formmail.skin.php @@ -14,7 +14,7 @@ add_stylesheet('', - + diff --git a/theme/basic/skin/popular/basic/popular.skin.php b/theme/basic/skin/popular/basic/popular.skin.php index 14fe12281..49e0b99e6 100644 --- a/theme/basic/skin/popular/basic/popular.skin.php +++ b/theme/basic/skin/popular/basic/popular.skin.php @@ -11,7 +11,7 @@ add_stylesheet('',

인기검색어

diff --git a/theme/basic/skin/qa/basic/write.skin.php b/theme/basic/skin/qa/basic/write.skin.php index d81465a50..088914615 100644 --- a/theme/basic/skin/qa/basic/write.skin.php +++ b/theme/basic/skin/qa/basic/write.skin.php @@ -53,7 +53,7 @@ add_stylesheet('', 0); @@ -64,7 +64,7 @@ add_stylesheet('', 0);
- class="frm_input email" maxlength="100"> + class="frm_input email" maxlength="100"> >
- class="frm_input" size="30"> + class="frm_input" size="30"> > 답변등록 SMS알림 수신 @@ -75,7 +75,7 @@ add_stylesheet('', 0);
- +
- class="frm_input email" size="50" maxlength="100"> + class="frm_input email" size="50" maxlength="100"> >
- class="frm_input" size="30"> + class="frm_input" size="30"> > 답변등록 SMS알림 수신 @@ -75,7 +75,7 @@ add_stylesheet('', 0);
- +
- class="frm_input email" maxlength="100"> + class="frm_input email" maxlength="100"> >
- class="frm_input" size="30"> + class="frm_input" size="30"> > 답변등록 SMS알림 수신 @@ -75,7 +75,7 @@ add_stylesheet('', 0);
- +
- class="frm_input email" size="50" maxlength="100"> + class="frm_input email" size="50" maxlength="100"> >
- class="frm_input" size="30"> + class="frm_input" size="30"> > 답변등록 SMS알림 수신 @@ -75,7 +75,7 @@ add_stylesheet('', 0);
- +