From 45244de78ee36e93668285561c99dac22591cdcb Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Thu, 9 Jul 2015 13:46:17 +0900
Subject: [PATCH 01/28] =?UTF-8?q?XSS=20=EC=B7=A8=EC=95=BD=EC=A0=90=20?=
 =?UTF-8?q?=EC=88=98=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 lib/common.lib.php                      | 8 ++------
 mobile/skin/member/basic/login.skin.php | 2 +-
 skin/member/basic/login.skin.php        | 2 +-
 3 files changed, 4 insertions(+), 8 deletions(-)

diff --git a/lib/common.lib.php b/lib/common.lib.php
index 53eb1f1df..091ba8cb4 100644
--- a/lib/common.lib.php
+++ b/lib/common.lib.php
@@ -2367,12 +2367,8 @@ function hyphen_hp_number($hp)
 function login_url($url='')
 {
     if (!$url) $url = G5_URL;
-    /*
-    $p = parse_url($url);
-    echo urlencode($_SERVER['REQUEST_URI']);
-    return $url.urldecode(preg_replace("/^".urlencode($p['path'])."/", "", urlencode($_SERVER['REQUEST_URI'])));
-    */
-    return $url;
+
+    return urlencode(clean_xss_tags($url));
 }
 
 
diff --git a/mobile/skin/member/basic/login.skin.php b/mobile/skin/member/basic/login.skin.php
index 3274b7dd8..3d704f392 100644
--- a/mobile/skin/member/basic/login.skin.php
+++ b/mobile/skin/member/basic/login.skin.php
@@ -9,7 +9,7 @@ add_stylesheet('<link rel="stylesheet" href="'.$member_skin_url.'/style.css">',
     <h1><?php echo $g5['title'] ?></h1>
 
     <form name="flogin" action="<?php echo $login_action_url ?>" onsubmit="return flogin_submit(this);" method="post">
-    <input type="hidden" name="url" value='<?php echo $login_url ?>'>
+    <input type="hidden" name="url" value="<?php echo $login_url ?>">
 
     <div id="login_frm">
         <label for="login_id" class="sound_only">아이디<strong class="sound_only"> 필수</strong></label>
diff --git a/skin/member/basic/login.skin.php b/skin/member/basic/login.skin.php
index 18771e54c..86772c70d 100644
--- a/skin/member/basic/login.skin.php
+++ b/skin/member/basic/login.skin.php
@@ -10,7 +10,7 @@ add_stylesheet('<link rel="stylesheet" href="'.$member_skin_url.'/style.css">',
     <h1><?php echo $g5['title'] ?></h1>
 
     <form name="flogin" action="<?php echo $login_action_url ?>" onsubmit="return flogin_submit(this);" method="post">
-    <input type="hidden" name="url" value='<?php echo $login_url ?>'>
+    <input type="hidden" name="url" value="<?php echo $login_url ?>">
 
     <fieldset id="login_fs">
         <legend>회원로그인</legend>

From 2fc315c51e0658026c38c1afaffa2ba59d9f837e Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Thu, 9 Jul 2015 16:25:20 +0900
Subject: [PATCH 02/28] =?UTF-8?q?=EC=A4=91=EB=B3=B5=20urlencode=20?=
 =?UTF-8?q?=EC=98=A4=EB=A5=98=20=EC=88=98=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 lib/common.lib.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/common.lib.php b/lib/common.lib.php
index 091ba8cb4..d8f4bc557 100644
--- a/lib/common.lib.php
+++ b/lib/common.lib.php
@@ -2368,7 +2368,7 @@ function login_url($url='')
 {
     if (!$url) $url = G5_URL;
 
-    return urlencode(clean_xss_tags($url));
+    return urlencode(clean_xss_tags(urldecode($url)));
 }
 
 

From e5eddb22b76abc6ee7b2de7ac1248af6458f8a60 Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Fri, 10 Jul 2015 08:58:40 +0900
Subject: [PATCH 03/28] =?UTF-8?q?=EB=AA=A8=EB=B0=94=EC=9D=BC=20=EB=A6=AC?=
 =?UTF-8?q?=EC=8A=A4=ED=8A=B8=20=EB=B2=A0=EC=8A=A4=ED=8A=B8=20=EC=83=81?=
 =?UTF-8?q?=ED=92=88=20=EC=8A=AC=EB=9D=BC=EC=9D=B4=EB=93=9C=20=EC=8A=A4?=
 =?UTF-8?q?=ED=81=AC=EB=A6=BD=ED=8A=B8=20=EC=98=A4=EB=A5=98=20=EC=88=98?=
 =?UTF-8?q?=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 mobile/skin/shop/basic/list.best.10.skin.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/mobile/skin/shop/basic/list.best.10.skin.php b/mobile/skin/shop/basic/list.best.10.skin.php
index d170fb482..0beae55fb 100644
--- a/mobile/skin/shop/basic/list.best.10.skin.php
+++ b/mobile/skin/shop/basic/list.best.10.skin.php
@@ -108,7 +108,7 @@ if($this->total_count > 0) {
         var count = $slides.size();
         var width, outerW;
 
-        if(count < 2)
+        if(count < 1)
             return;
 
         function button_change(idx)

From 54aa905699d6a08b6295b0f9a8631ec5c717d5b7 Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Mon, 13 Jul 2015 10:54:32 +0900
Subject: [PATCH 04/28] =?UTF-8?q?=EB=B2=84=EC=A0=84=EB=B3=80=EA=B2=BD?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 config.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/config.php b/config.php
index a99fd63ca..564f8afd2 100644
--- a/config.php
+++ b/config.php
@@ -5,7 +5,7 @@
 ********************/
 
 define('G5_VERSION', '그누보드5');
-define('G5_GNUBOARD_VER', '5.0.39');
+define('G5_GNUBOARD_VER', '5.0.40');
 
 // 이 상수가 정의되지 않으면 각각의 개별 페이지는 별도로 실행될 수 없음
 define('_GNUBOARD_', true);

From 9356fdfaa86c7eb9a97ac89b6a5bc45197907e3d Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Mon, 13 Jul 2015 17:20:00 +0900
Subject: [PATCH 05/28] =?UTF-8?q?=ED=8C=9D=EC=97=85=EB=A0=88=EC=9D=B4?=
 =?UTF-8?q?=EC=96=B4=20=EC=A4=91=EB=B3=B5=20=EC=BF=BC=EB=A6=AC=20=EC=88=98?=
 =?UTF-8?q?=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 bbs/newwin.inc.php    | 7 ++-----
 mobile/newwin.inc.php | 7 ++-----
 2 files changed, 4 insertions(+), 10 deletions(-)

diff --git a/bbs/newwin.inc.php b/bbs/newwin.inc.php
index 3c3c8c127..e3f8aed55 100644
--- a/bbs/newwin.inc.php
+++ b/bbs/newwin.inc.php
@@ -13,14 +13,11 @@ $result = sql_query($sql, false);
     <h2>팝업레이어 알림</h2>
 
 <?php
-for ($i=0; $row_nw=sql_fetch_array($result); $i++)
+for ($i=0; $nw=sql_fetch_array($result); $i++)
 {
     // 이미 체크 되었다면 Continue
-    if ($_COOKIE["hd_pops_{$row_nw['nw_id']}"])
+    if ($_COOKIE["hd_pops_{$nw['nw_id']}"])
         continue;
-
-    $sql = " select * from {$g5['new_win_table']} where nw_id = '{$row_nw['nw_id']}' ";
-    $nw = sql_fetch($sql);
 ?>
 
     <div id="hd_pops_<?php echo $nw['nw_id'] ?>" class="hd_pops" style="top:<?php echo $nw['nw_top']?>px;left:<?php echo $nw['nw_left']?>px">
diff --git a/mobile/newwin.inc.php b/mobile/newwin.inc.php
index 14ad49127..bfd3eadfc 100644
--- a/mobile/newwin.inc.php
+++ b/mobile/newwin.inc.php
@@ -13,14 +13,11 @@ $result = sql_query($sql, false);
     <h2>팝업레이어 알림</h2>
 
 <?php
-for ($i=0; $row_nw=sql_fetch_array($result); $i++)
+for ($i=0; $nw=sql_fetch_array($result); $i++)
 {
     // 이미 체크 되었다면 Continue
-    if ($_COOKIE["hd_pops_{$row_nw['nw_id']}"])
+    if ($_COOKIE["hd_pops_{$nw['nw_id']}"])
         continue;
-
-    $sql = " select * from {$g5['new_win_table']} where nw_id = '{$row_nw['nw_id']}' ";
-    $nw = sql_fetch($sql);
 ?>
 
     <div id="hd_pops_<?php echo $nw['nw_id'] ?>" class="hd_pops" style="top:<?php echo $nw['nw_top']?>px;left:<?php echo $nw['nw_left']?>px;">

From 164944dd0c69b3a06edd093a9d67616189156b5a Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Tue, 14 Jul 2015 12:10:44 +0900
Subject: [PATCH 06/28] =?UTF-8?q?XSS=20=EC=B7=A8=EC=95=BD=EC=A0=90=20?=
 =?UTF-8?q?=EC=88=98=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 bbs/alert.php               | 3 ++-
 bbs/confirm.php             | 4 ++++
 bbs/move.php                | 2 +-
 bbs/new.php                 | 2 ++
 bbs/register_form.php       | 3 +++
 bbs/search.php              | 2 +-
 lib/common.lib.php          | 7 ++++++-
 skin/new/basic/new.skin.php | 1 -
 8 files changed, 19 insertions(+), 5 deletions(-)

diff --git a/bbs/alert.php b/bbs/alert.php
index d64b6f2fd..6b1ab26a7 100644
--- a/bbs/alert.php
+++ b/bbs/alert.php
@@ -30,7 +30,8 @@ include_once(G5_PATH.'/head.sub.php');
 
 $msg2 = str_replace("\\n", "<br>", $msg);
 
-if (!$url) $url = $_SERVER['HTTP_REFERER'];
+$url = clean_xss_tags($url);
+if (!$url) $url = clean_xss_tags($_SERVER['HTTP_REFERER']);
 
 // url 체크
 check_url_host($url);
diff --git a/bbs/confirm.php b/bbs/confirm.php
index 76e9c7652..fcf94e0e9 100644
--- a/bbs/confirm.php
+++ b/bbs/confirm.php
@@ -2,6 +2,10 @@
 include_once('./_common.php');
 include_once(G5_PATH.'/head.sub.php');
 
+$url1 = clean_xss_tags($url1);
+$url2 = clean_xss_tags($url2);
+$url3 = clean_xss_tags($url3);
+
 // url 체크
 check_url_host($url1);
 check_url_host($url2);
diff --git a/bbs/move.php b/bbs/move.php
index e3a7d86f2..a4631addf 100644
--- a/bbs/move.php
+++ b/bbs/move.php
@@ -55,7 +55,7 @@ for ($i=0; $row=sql_fetch_array($result); $i++)
     <input type="hidden" name="sod" value="<?php echo $sod ?>">
     <input type="hidden" name="page" value="<?php echo $page ?>">
     <input type="hidden" name="act" value="<?php echo $act ?>">
-    <input type="hidden" name="url" value="<?php echo $_SERVER['HTTP_REFERER'] ?>">
+    <input type="hidden" name="url" value="<?php echo clean_xss_tags($_SERVER['HTTP_REFERER']); ?>">
 
     <div class="tbl_head01 tbl_wrap">
         <table>
diff --git a/bbs/new.php b/bbs/new.php
index bbf9ccf96..9e008e861 100644
--- a/bbs/new.php
+++ b/bbs/new.php
@@ -17,6 +17,8 @@ if ($view == "w")
     $sql_common .= " and a.wr_id = a.wr_parent ";
 else if ($view == "c")
     $sql_common .= " and a.wr_id <> a.wr_parent ";
+else
+    $view = '';
 
 $mb_id = isset($_GET['mb_id']) ? ($_GET['mb_id']) : '';
 $mb_id = substr(preg_replace('#[^a-z0-9_]#i', '', $mb_id), 0, 20);
diff --git a/bbs/register_form.php b/bbs/register_form.php
index cb6fd2517..e6583e111 100644
--- a/bbs/register_form.php
+++ b/bbs/register_form.php
@@ -30,6 +30,9 @@ if ($w == "") {
         alert('개인정보처리방침안내의 내용에 동의하셔야 회원가입 하실 수 있습니다.', G5_BBS_URL.'/register.php');
     }
 
+    $agree  = preg_replace('#[^0-9]#', '', $_POST['agree']);
+    $agree2 = preg_replace('#[^0-9]#', '', $_POST['agree2']);
+
     $member['mb_birth'] = '';
     $member['mb_sex']   = '';
     $member['mb_name']  = '';
diff --git a/bbs/search.php b/bbs/search.php
index 4f4df3f19..0f3fe803b 100644
--- a/bbs/search.php
+++ b/bbs/search.php
@@ -17,7 +17,7 @@ if ($stx) {
     $stx = preg_replace('/\//', '\/', trim($stx));
     $sop = strtolower($sop);
     if (!$sop || !($sop == 'and' || $sop == 'or')) $sop = 'and'; // 연산자 and , or
-    $srows = isset($_GET['srows']) ? preg_replace('#[^0-9]#', '', $_GET['srows']) : 10;
+    $srows = isset($_GET['srows']) ? (int)preg_replace('#[^0-9]#', '', $_GET['srows']) : 10;
     if (!$srows) $srows = 10; // 한페이지에 출력하는 검색 행수
 
     $g5_search['tables'] = Array();
diff --git a/lib/common.lib.php b/lib/common.lib.php
index d8f4bc557..c7f842586 100644
--- a/lib/common.lib.php
+++ b/lib/common.lib.php
@@ -192,7 +192,7 @@ function confirm($msg, $url1='', $url2='', $url3='')
         alert($msg);
     }
 
-    if (!$url3) $url3 = $_SERVER['HTTP_REFERER'];
+    if (!$url3) $url3 = clean_xss_tags($_SERVER['HTTP_REFERER']);
 
     $msg = str_replace("\\n", "<br>", $msg);
 
@@ -2723,6 +2723,11 @@ function clean_xss_tags($str)
 {
     $str = preg_replace('#</*(?:applet|b(?:ase|gsound|link)|embed|frame(?:set)?|i(?:frame|layer)|l(?:ayer|ink)|meta|object|s(?:cript|tyle)|title|xml)[^>]*+>#i', '', $str);
 
+    $search  = array('"', "'");
+    $replace = array('&#34;', '&#39;');
+
+    $str = str_replace($search, $replace, $str);
+
     return $str;
 }
 
diff --git a/skin/new/basic/new.skin.php b/skin/new/basic/new.skin.php
index 085eec0e6..2558d8118 100644
--- a/skin/new/basic/new.skin.php
+++ b/skin/new/basic/new.skin.php
@@ -45,7 +45,6 @@ add_stylesheet('<link rel="stylesheet" href="'.$new_skin_url.'/style.css">', 0);
 <input type="hidden" name="view"     value="<?php echo $view; ?>">
 <input type="hidden" name="sfl"      value="<?php echo $sfl; ?>">
 <input type="hidden" name="stx"      value="<?php echo $stx; ?>">
-<input type="hidden" name="srows"    value="<?php echo $srows; ?>">
 <input type="hidden" name="bo_table" value="<?php echo $bo_table; ?>">
 <input type="hidden" name="page"     value="<?php echo $page; ?>">
 <input type="hidden" name="pressed"  value="">

From 9a44ca14b53b320ede837ed32b366d86fdc1be64 Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Tue, 14 Jul 2015 13:33:45 +0900
Subject: [PATCH 07/28] =?UTF-8?q?=EB=AA=A8=EB=B0=94=EC=9D=BC=20=EA=B4=80?=
 =?UTF-8?q?=EB=A0=A8=EC=83=81=ED=92=88=20=EC=B6=9C=EB=A0=A5=EC=84=A4?=
 =?UTF-8?q?=EC=A0=95=20=EC=A0=81=EC=9A=A9=EB=90=98=EC=A7=80=20=EC=95=8A?=
 =?UTF-8?q?=EB=8A=94=20=EC=98=A4=EB=A5=98=20=EC=88=98=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 mobile/skin/shop/basic/item.form.skin.php | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/mobile/skin/shop/basic/item.form.skin.php b/mobile/skin/shop/basic/item.form.skin.php
index 2adeb5e18..c1fce1d0d 100644
--- a/mobile/skin/shop/basic/item.form.skin.php
+++ b/mobile/skin/shop/basic/item.form.skin.php
@@ -281,7 +281,7 @@ add_stylesheet('<link rel="stylesheet" href="'.G5_SHOP_CSS_URL.'/style.css">', 0
             <a href="javascript:popup_stocksms('<?php echo $it['it_id']; ?>');" id="sit_btn_buy">재입고알림</a>
             <?php } ?>
             <a href="javascript:item_wish(document.fitem, '<?php echo $it['it_id']; ?>');" id="sit_btn_wish">WISH</a>
-            
+
         </div>
     </section>
 </div>
@@ -319,6 +319,7 @@ add_stylesheet('<link rel="stylesheet" href="'.G5_SHOP_CSS_URL.'/style.css">', 0
 
 </form>
 
+<?php if($default['de_mobile_rel_list_use']) { ?>
 <!-- 관련상품 시작 { -->
 <section id="sit_rel">
     <h2>WITH ITEM</h2>
@@ -336,6 +337,7 @@ add_stylesheet('<link rel="stylesheet" href="'.G5_SHOP_CSS_URL.'/style.css">', 0
     </div>
 </section>
 <!-- } 관련상품 끝 -->
+<?php } ?>
 
 
 <script>

From b2bfe117438e875bd24d523a1a19e11802cdfcb8 Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Tue, 14 Jul 2015 13:58:19 +0900
Subject: [PATCH 08/28] =?UTF-8?q?XSS=20=EC=B7=A8=EC=95=BD=EC=A0=90=20?=
 =?UTF-8?q?=EC=88=98=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 bbs/register_form.php | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/bbs/register_form.php b/bbs/register_form.php
index e6583e111..4729c7692 100644
--- a/bbs/register_form.php
+++ b/bbs/register_form.php
@@ -30,9 +30,6 @@ if ($w == "") {
         alert('개인정보처리방침안내의 내용에 동의하셔야 회원가입 하실 수 있습니다.', G5_BBS_URL.'/register.php');
     }
 
-    $agree  = preg_replace('#[^0-9]#', '', $_POST['agree']);
-    $agree2 = preg_replace('#[^0-9]#', '', $_POST['agree2']);
-
     $member['mb_birth'] = '';
     $member['mb_sex']   = '';
     $member['mb_name']  = '';
@@ -118,6 +115,9 @@ $req_nick = !isset($member['mb_nick_date']) || (isset($member['mb_nick_date']) &
 $required = ($w=='') ? 'required' : '';
 $readonly = ($w=='u') ? 'readonly' : '';
 
+$agree  = preg_replace('#[^0-9]#', '', $agree);
+$agree2 = preg_replace('#[^0-9]#', '', $agree2);
+
 // add_javascript('js 구문', 출력순서); 숫자가 작을 수록 먼저 출력됨
 if ($config['cf_use_addr'])
     add_javascript(G5_POSTCODE_JS, 0);    //다음 주소 js

From aa1c155123da770d8fbcdb226e5acc3957e67a62 Mon Sep 17 00:00:00 2001
From: iz4blue <iz4blue@gmail.com>
Date: Sat, 11 Jul 2015 20:22:31 +0900
Subject: [PATCH 09/28] =?UTF-8?q?=EC=9D=B4=EB=AF=B8=EC=A7=80=20width=20?=
 =?UTF-8?q?=EA=B3=84=EC=82=B0=20=EC=9D=B4=ED=9B=84=20=EB=B9=A0=EC=A7=84=20?=
 =?UTF-8?q?attributes=20=EC=B6=94=EA=B0=80?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 lib/common.lib.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/common.lib.php b/lib/common.lib.php
index c7f842586..9ffc825b1 100644
--- a/lib/common.lib.php
+++ b/lib/common.lib.php
@@ -1309,7 +1309,7 @@ function view_file_link($file, $width, $height, $content='')
 
     if (preg_match("/\.({$config['cf_image_extension']})$/i", $file)) {
         $img = '<a href="'.G5_BBS_URL.'/view_image.php?bo_table='.$board['bo_table'].'&amp;fn='.urlencode($file).'" target="_blank" class="view_image">';
-        $img .= '<img src="'.G5_DATA_URL.'/file/'.$board['bo_table'].'/'.urlencode($file).'" alt="'.$content.'">';
+        $img .= '<img src="'.G5_DATA_URL.'/file/'.$board['bo_table'].'/'.urlencode($file).'" alt="'.$content.'" '.$attr.'>';
         $img .= '</a>';
 
         return $img;

From bc65502fe99bccaa34615234451950a5cc4f76fc Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Tue, 14 Jul 2015 14:21:19 +0900
Subject: [PATCH 10/28] =?UTF-8?q?=EB=AA=A8=EB=B0=94=EC=9D=BC=20=EA=B0=A4?=
 =?UTF-8?q?=EB=9F=AC=EB=A6=AC=20=EC=8A=A4=ED=82=A8=20=EA=B2=80=EC=83=89=20?=
 =?UTF-8?q?=EC=8A=A4=ED=83=80=EC=9D=BC=20=EC=A0=95=EB=A6=AC?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 mobile/skin/board/gallery/list.skin.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/mobile/skin/board/gallery/list.skin.php b/mobile/skin/board/gallery/list.skin.php
index 2131fc080..20f50eada 100644
--- a/mobile/skin/board/gallery/list.skin.php
+++ b/mobile/skin/board/gallery/list.skin.php
@@ -180,7 +180,7 @@ $(window).on("load", function() {
         <option value="wr_name,1"<?php echo get_selected($sfl, "wr_name,1"); ?>>글쓴이</option>
         <option value="wr_name,0"<?php echo get_selected($sfl, "wr_name,0"); ?>>글쓴이(코)</option>
     </select>
-    <input name="stx" value="<?php echo stripslashes($stx) ?>" placeholder="검색어(필수)" required id="stx" class="required" size="15" maxlength="20">
+    <input name="stx" value="<?php echo stripslashes($stx) ?>" placeholder="검색어(필수)" required id="stx" class="required frm_input" size="15" maxlength="20">
     <input type="submit" value="검색">
     </form>
 </fieldset>

From 22a3c1c4db502d1dca7233c870098b8bfc0fecbe Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Fri, 17 Jul 2015 11:35:27 +0900
Subject: [PATCH 11/28] =?UTF-8?q?=EC=83=88=20=EC=9A=B0=ED=8E=B8=EB=B2=88?=
 =?UTF-8?q?=ED=98=B8=20=EC=A0=81=EC=9A=A9?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 adm/member_form.php                             |  8 +++-----
 adm/member_form_update.php                      |  7 +++++--
 bbs/register_form_update.php                    |  4 ++--
 js/common.js                                    | 11 +++++------
 mobile/skin/member/basic/register_form.skin.php |  9 +++------
 skin/member/basic/register_form.skin.php        |  9 +++------
 6 files changed, 21 insertions(+), 27 deletions(-)

diff --git a/adm/member_form.php b/adm/member_form.php
index e47771fcd..ddcdfbe47 100644
--- a/adm/member_form.php
+++ b/adm/member_form.php
@@ -214,11 +214,9 @@ add_javascript(G5_POSTCODE_JS, 0);    //다음 주소 js
     <tr>
         <th scope="row"><label for="mb_zip1">주소</label></th>
         <td colspan="3" class="td_addr_line">
-            <label for="mb_zip1" class="sound_only">우편번호 앞자리</label>
-            <input type="text" name="mb_zip1" value="<?php echo $mb['mb_zip1'] ?>" id="mb_zip1" class="frm_input readonly" size="3" maxlength="3"> -
-            <label for="mb_zip2" class="sound_only">우편번호 뒷자리</label>
-            <input type="text" name="mb_zip2" value="<?php echo $mb['mb_zip2'] ?>" id="mb_zip2" class="frm_input readonly" size="3" maxlength="3">
-            <button type="button" class="btn_frmline" onclick="win_zip('fmember', 'mb_zip1', 'mb_zip2', 'mb_addr1', 'mb_addr2', 'mb_addr3', 'mb_addr_jibeon');">주소 검색</button><br>
+            <label for="mb_zip" class="sound_only">우편번호</label>
+            <input type="text" name="mb_zip" value="<?php echo $mb['mb_zip1'].$mb['mb_zip2']; ?>" id="mb_zip" class="frm_input readonly" size="5" maxlength="6">
+            <button type="button" class="btn_frmline" onclick="win_zip('fmember', 'mb_zip', 'mb_addr1', 'mb_addr2', 'mb_addr3', 'mb_addr_jibeon');">주소 검색</button><br>
             <input type="text" name="mb_addr1" value="<?php echo $mb['mb_addr1'] ?>" id="mb_addr1" class="frm_input readonly" size="60">
             <label for="mb_addr1">기본주소</label><br>
             <input type="text" name="mb_addr2" value="<?php echo $mb['mb_addr2'] ?>" id="mb_addr2" class="frm_input" size="60">
diff --git a/adm/member_form_update.php b/adm/member_form_update.php
index 333b18728..310e5e8d1 100644
--- a/adm/member_form_update.php
+++ b/adm/member_form_update.php
@@ -29,6 +29,9 @@ if($_POST['mb_certify_case'] && $_POST['mb_certify']) {
     $mb_adult = 0;
 }
 
+$mb_zip1 = substr($_POST['mb_zip'], 0, 3);
+$mb_zip2 = substr($_POST['mb_zip'], 3);
+
 $sql_common = "  mb_name = '{$_POST['mb_name']}',
                  mb_nick = '{$_POST['mb_nick']}',
                  mb_email = '{$_POST['mb_email']}',
@@ -37,8 +40,8 @@ $sql_common = "  mb_name = '{$_POST['mb_name']}',
                  mb_hp = '{$mb_hp}',
                  mb_certify = '{$mb_certify}',
                  mb_adult = '{$mb_adult}',
-                 mb_zip1 = '{$_POST['mb_zip1']}',
-                 mb_zip2 = '{$_POST['mb_zip2']}',
+                 mb_zip1 = '$mb_zip1',
+                 mb_zip2 = '$mb_zip2',
                  mb_addr1 = '{$_POST['mb_addr1']}',
                  mb_addr2 = '{$_POST['mb_addr2']}',
                  mb_addr3 = '{$_POST['mb_addr3']}',
diff --git a/bbs/register_form_update.php b/bbs/register_form_update.php
index 05e90788c..83144fecc 100644
--- a/bbs/register_form_update.php
+++ b/bbs/register_form_update.php
@@ -40,8 +40,8 @@ $mb_birth       = isset($_POST['mb_birth'])         ? trim($_POST['mb_birth'])
 $mb_homepage    = isset($_POST['mb_homepage'])      ? trim($_POST['mb_homepage'])    : "";
 $mb_tel         = isset($_POST['mb_tel'])           ? trim($_POST['mb_tel'])         : "";
 $mb_hp          = isset($_POST['mb_hp'])            ? trim($_POST['mb_hp'])          : "";
-$mb_zip1        = isset($_POST['mb_zip1'])          ? trim($_POST['mb_zip1'])        : "";
-$mb_zip2        = isset($_POST['mb_zip2'])          ? trim($_POST['mb_zip2'])        : "";
+$mb_zip1        = isset($_POST['mb_zip'])           ? substr(trim($_POST['mb_zip']), 0, 3) : "";
+$mb_zip2        = isset($_POST['mb_zip'])           ? substr(trim($_POST['mb_zip']), 3)    : "";
 $mb_addr1       = isset($_POST['mb_addr1'])         ? trim($_POST['mb_addr1'])       : "";
 $mb_addr2       = isset($_POST['mb_addr2'])         ? trim($_POST['mb_addr2'])       : "";
 $mb_addr3       = isset($_POST['mb_addr3'])         ? trim($_POST['mb_addr3'])       : "";
diff --git a/js/common.js b/js/common.js
index 8802f1c09..b964cd782 100644
--- a/js/common.js
+++ b/js/common.js
@@ -376,7 +376,7 @@ var win_homepage = function(href) {
 /**
  * 우편번호 창
  **/
-var win_zip = function(frm_name, frm_zip1, frm_zip2, frm_addr1, frm_addr2, frm_addr3, frm_jibeon) {
+var win_zip = function(frm_name, frm_zip, frm_addr1, frm_addr2, frm_addr3, frm_jibeon) {
     if(typeof daum === 'undefined'){
         alert("다음 우편번호 postcode.v2.js 파일이 로드되지 않았습니다.");
         return false;
@@ -386,7 +386,7 @@ var win_zip = function(frm_name, frm_zip1, frm_zip2, frm_addr1, frm_addr2, frm_a
 
     var complete_fn = function(data){
         // 팝업에서 검색결과 항목을 클릭했을때 실행할 코드를 작성하는 부분.
-        
+
         // 각 주소의 노출 규칙에 따라 주소를 조합한다.
         // 내려오는 변수가 값이 없는 경우엔 공백('')값을 가지므로, 이를 참고하여 분기 한다.
         var fullAddr = ''; // 최종 주소 변수
@@ -417,8 +417,7 @@ var win_zip = function(frm_name, frm_zip1, frm_zip2, frm_addr1, frm_addr2, frm_a
         // 우편번호와 주소 정보를 해당 필드에 넣고, 커서를 상세주소 필드로 이동한다.
         var of = document[frm_name];
 
-        of[frm_zip1].value = data.postcode1;
-        of[frm_zip2].value = data.postcode2;
+        of[frm_zip].value = data.zonecode;
 
         of[frm_addr1].value = fullAddr;
         of[frm_addr3].value = extraAddr;
@@ -432,7 +431,7 @@ var win_zip = function(frm_name, frm_zip1, frm_zip2, frm_addr1, frm_addr2, frm_a
 
     switch(zip_case) {
         case 1 :    //iframe을 이용하여 페이지에 끼워 넣기
-            var daum_pape_id = 'daum_juso_page'+frm_zip1,
+            var daum_pape_id = 'daum_juso_page'+frm_zip,
                 element_wrap = document.getElementById(daum_pape_id),
                 currentScroll = Math.max(document.body.scrollTop, document.documentElement.scrollTop);
             if (element_wrap == null) {
@@ -475,7 +474,7 @@ var win_zip = function(frm_name, frm_zip1, frm_zip2, frm_addr1, frm_addr2, frm_a
             }).open();
             break;
         default :   //iframe을 이용하여 레이어 띄우기
-            var rayer_id = 'daum_juso_rayer'+frm_zip1,
+            var rayer_id = 'daum_juso_rayer'+frm_zip,
                 element_layer = document.getElementById(rayer_id);
             if (element_layer == null) {
                 element_layer = document.createElement("div");
diff --git a/mobile/skin/member/basic/register_form.skin.php b/mobile/skin/member/basic/register_form.skin.php
index 54f559d9e..4adb79722 100644
--- a/mobile/skin/member/basic/register_form.skin.php
+++ b/mobile/skin/member/basic/register_form.skin.php
@@ -141,12 +141,9 @@ add_stylesheet('<link rel="stylesheet" href="'.$member_skin_url.'/style.css">',
                 <?php if ($config['cf_req_addr']) { ?><strong class="sound_only">필수</strong><?php } ?>
             </th>
             <td>
-                <label for="reg_mb_zip1" class="sound_only">우편번호 앞자리<?php echo $config['cf_req_addr']?'<strong class="sound_only"> 필수</strong>':''; ?></label>
-                <input type="text" name="mb_zip1" value="<?php echo $member['mb_zip1'] ?>" id="reg_mb_zip1" <?php echo $config['cf_req_addr']?"required":""; ?> class="frm_input <?php echo $config['cf_req_addr']?"required":""; ?>" size="3" maxlength="3">
-                -
-                <label for="reg_mb_zip2" class="sound_only">우편번호 뒷자리<?php echo $config['cf_req_addr']?'<strong class="sound_only"> 필수</strong>':''; ?></label>
-                <input type="text" name="mb_zip2" value="<?php echo $member['mb_zip2'] ?>" id="reg_mb_zip2" <?php echo $config['cf_req_addr']?"required":""; ?> class="frm_input <?php echo $config['cf_req_addr']?"required":""; ?>" size="3" maxlength="3">
-                <button type="button" class="btn_frmline" onclick="win_zip('fregisterform', 'mb_zip1', 'mb_zip2', 'mb_addr1', 'mb_addr2', 'mb_addr3', 'mb_addr_jibeon');">주소 검색</button><br>
+                <label for="reg_mb_zip1" class="sound_only">우편번호<?php echo $config['cf_req_addr']?'<strong class="sound_only"> 필수</strong>':''; ?></label>
+                <input type="text" name="mb_zip" value="<?php echo $member['mb_zip1'].$member['mb_zip2']; ?>" id="reg_mb_zip" <?php echo $config['cf_req_addr']?"required":""; ?> class="frm_input <?php echo $config['cf_req_addr']?"required":""; ?>" size="5" maxlength="6">
+                <button type="button" class="btn_frmline" onclick="win_zip('fregisterform', 'mb_zip', 'mb_addr1', 'mb_addr2', 'mb_addr3', 'mb_addr_jibeon');">주소 검색</button><br>
                 <label for="reg_mb_addr1" class="sound_only">주소<?php echo $config['cf_req_addr']?'<strong class="sound_only"> 필수</strong>':''; ?></label>
                 <input type="text" name="mb_addr1" value="<?php echo $member['mb_addr1'] ?>" id="reg_mb_addr1" <?php echo $config['cf_req_addr']?"required":""; ?> class="frm_input frm_address <?php echo $config['cf_req_addr']?"required":""; ?>" size="50"><br>
                 <label for="reg_mb_addr2" class="sound_only">상세주소</label>
diff --git a/skin/member/basic/register_form.skin.php b/skin/member/basic/register_form.skin.php
index 149411388..eabd23bb0 100644
--- a/skin/member/basic/register_form.skin.php
+++ b/skin/member/basic/register_form.skin.php
@@ -146,12 +146,9 @@ add_stylesheet('<link rel="stylesheet" href="'.$member_skin_url.'/style.css">',
                 <?php if ($config['cf_req_addr']) { ?><strong class="sound_only">필수</strong><?php }  ?>
             </th>
             <td>
-                <label for="reg_mb_zip1" class="sound_only">우편번호 앞자리<?php echo $config['cf_req_addr']?'<strong class="sound_only"> 필수</strong>':''; ?></label>
-                <input type="text" name="mb_zip1" value="<?php echo $member['mb_zip1'] ?>" id="reg_mb_zip1" <?php echo $config['cf_req_addr']?"required":""; ?> class="frm_input <?php echo $config['cf_req_addr']?"required":""; ?>" size="3" maxlength="3">
-                -
-                <label for="reg_mb_zip2" class="sound_only">우편번호 뒷자리<?php echo $config['cf_req_addr']?'<strong class="sound_only"> 필수</strong>':''; ?></label>
-                <input type="text" name="mb_zip2" value="<?php echo $member['mb_zip2'] ?>" id="reg_mb_zip2" <?php echo $config['cf_req_addr']?"required":""; ?> class="frm_input <?php echo $config['cf_req_addr']?"required":""; ?>" size="3" maxlength="3">
-                <button type="button" class="btn_frmline" onclick="win_zip('fregisterform', 'mb_zip1', 'mb_zip2', 'mb_addr1', 'mb_addr2', 'mb_addr3', 'mb_addr_jibeon');">주소 검색</button><br>
+                <label for="reg_mb_zip1" class="sound_only">우편번호<?php echo $config['cf_req_addr']?'<strong class="sound_only"> 필수</strong>':''; ?></label>
+                <input type="text" name="mb_zip" value="<?php echo $member['mb_zip1'].$member['mb_zip2']; ?>" id="reg_mb_zip" <?php echo $config['cf_req_addr']?"required":""; ?> class="frm_input <?php echo $config['cf_req_addr']?"required":""; ?>" size="5" maxlength="6">
+                <button type="button" class="btn_frmline" onclick="win_zip('fregisterform', 'mb_zip', 'mb_addr1', 'mb_addr2', 'mb_addr3', 'mb_addr_jibeon');">주소 검색</button><br>
                 <input type="text" name="mb_addr1" value="<?php echo $member['mb_addr1'] ?>" id="reg_mb_addr1" <?php echo $config['cf_req_addr']?"required":""; ?> class="frm_input frm_address <?php echo $config['cf_req_addr']?"required":""; ?>" size="50">
                 <label for="reg_mb_addr1">기본주소<?php echo $config['cf_req_addr']?'<strong class="sound_only"> 필수</strong>':''; ?></label><br>
                 <input type="text" name="mb_addr2" value="<?php echo $member['mb_addr2'] ?>" id="reg_mb_addr2" class="frm_input frm_address" size="50">

From 4d619286c3308a844ec9d6649ed85ff59e8308a8 Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Fri, 17 Jul 2015 11:38:29 +0900
Subject: [PATCH 12/28] =?UTF-8?q?=EC=9A=B0=ED=8E=B8=EB=B2=88=ED=98=B8=20la?=
 =?UTF-8?q?bel=20=EC=A7=80=EC=A0=95=20=EC=98=A4=EB=A5=98=20=EC=88=98?=
 =?UTF-8?q?=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 mobile/skin/member/basic/register_form.skin.php | 2 +-
 skin/member/basic/register_form.skin.php        | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/mobile/skin/member/basic/register_form.skin.php b/mobile/skin/member/basic/register_form.skin.php
index 4adb79722..9b783960b 100644
--- a/mobile/skin/member/basic/register_form.skin.php
+++ b/mobile/skin/member/basic/register_form.skin.php
@@ -141,7 +141,7 @@ add_stylesheet('<link rel="stylesheet" href="'.$member_skin_url.'/style.css">',
                 <?php if ($config['cf_req_addr']) { ?><strong class="sound_only">필수</strong><?php } ?>
             </th>
             <td>
-                <label for="reg_mb_zip1" class="sound_only">우편번호<?php echo $config['cf_req_addr']?'<strong class="sound_only"> 필수</strong>':''; ?></label>
+                <label for="reg_mb_zip" class="sound_only">우편번호<?php echo $config['cf_req_addr']?'<strong class="sound_only"> 필수</strong>':''; ?></label>
                 <input type="text" name="mb_zip" value="<?php echo $member['mb_zip1'].$member['mb_zip2']; ?>" id="reg_mb_zip" <?php echo $config['cf_req_addr']?"required":""; ?> class="frm_input <?php echo $config['cf_req_addr']?"required":""; ?>" size="5" maxlength="6">
                 <button type="button" class="btn_frmline" onclick="win_zip('fregisterform', 'mb_zip', 'mb_addr1', 'mb_addr2', 'mb_addr3', 'mb_addr_jibeon');">주소 검색</button><br>
                 <label for="reg_mb_addr1" class="sound_only">주소<?php echo $config['cf_req_addr']?'<strong class="sound_only"> 필수</strong>':''; ?></label>
diff --git a/skin/member/basic/register_form.skin.php b/skin/member/basic/register_form.skin.php
index eabd23bb0..f531052ae 100644
--- a/skin/member/basic/register_form.skin.php
+++ b/skin/member/basic/register_form.skin.php
@@ -146,7 +146,7 @@ add_stylesheet('<link rel="stylesheet" href="'.$member_skin_url.'/style.css">',
                 <?php if ($config['cf_req_addr']) { ?><strong class="sound_only">필수</strong><?php }  ?>
             </th>
             <td>
-                <label for="reg_mb_zip1" class="sound_only">우편번호<?php echo $config['cf_req_addr']?'<strong class="sound_only"> 필수</strong>':''; ?></label>
+                <label for="reg_mb_zip" class="sound_only">우편번호<?php echo $config['cf_req_addr']?'<strong class="sound_only"> 필수</strong>':''; ?></label>
                 <input type="text" name="mb_zip" value="<?php echo $member['mb_zip1'].$member['mb_zip2']; ?>" id="reg_mb_zip" <?php echo $config['cf_req_addr']?"required":""; ?> class="frm_input <?php echo $config['cf_req_addr']?"required":""; ?>" size="5" maxlength="6">
                 <button type="button" class="btn_frmline" onclick="win_zip('fregisterform', 'mb_zip', 'mb_addr1', 'mb_addr2', 'mb_addr3', 'mb_addr_jibeon');">주소 검색</button><br>
                 <input type="text" name="mb_addr1" value="<?php echo $member['mb_addr1'] ?>" id="reg_mb_addr1" <?php echo $config['cf_req_addr']?"required":""; ?> class="frm_input frm_address <?php echo $config['cf_req_addr']?"required":""; ?>" size="50">

From 959168c8e3ac4a8f2c0d511f25f5104e7784df40 Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Fri, 17 Jul 2015 14:17:59 +0900
Subject: [PATCH 13/28] =?UTF-8?q?=EC=83=88=20=EC=9A=B0=ED=8E=B8=EB=B2=88?=
 =?UTF-8?q?=ED=98=B8=20=EC=A0=81=EC=9A=A9?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 adm/shop_admin/orderform.php        | 18 ++++-------
 adm/shop_admin/orderformupdate.php  |  5 +++
 adm/shop_admin/orderprintresult.php |  8 ++---
 mobile/shop/orderform.php           | 46 ++++++++++-----------------
 mobile/shop/orderformupdate.php     | 10 +++---
 mobile/shop/orderinquiryview.php    |  4 +--
 shop/mail/orderupdate1.mail.php     |  4 +--
 shop/mail/orderupdate2.mail.php     |  4 +--
 shop/mail/orderupdate3.mail.php     |  4 +--
 shop/orderform.php                  | 48 +++++++++++------------------
 shop/orderformupdate.php            | 12 +++++---
 shop/orderinquiryview.php           |  4 +--
 12 files changed, 73 insertions(+), 94 deletions(-)

diff --git a/adm/shop_admin/orderform.php b/adm/shop_admin/orderform.php
index 99aed396b..429e6544f 100644
--- a/adm/shop_admin/orderform.php
+++ b/adm/shop_admin/orderform.php
@@ -817,12 +817,9 @@ add_javascript(G5_POSTCODE_JS, 0);    //다음 주소 js
                 <tr>
                     <th scope="row"><span class="sound_only">주문하시는 분 </span>주소</th>
                     <td>
-                        <label for="od_zip1" class="sound_only">우편번호 앞자리</label>
-                        <input type="text" name="od_zip1" value="<?php echo $od['od_zip1']; ?>" id="od_zip1" required class="frm_input required" size="4">
-                        -
-                        <label for="od_zip2" class="sound_only">우편번호 뒷자리</label>
-                        <input type="text" name="od_zip2" value="<?php echo $od['od_zip2']; ?>" id="od_zip2" required class="frm_input required" size="4">
-                        <button type="button" class="btn_frmline" onclick="win_zip('frmorderform3', 'od_zip1', 'od_zip2', 'od_addr1', 'od_addr2', 'od_addr3', 'od_addr_jibeon');">주소 검색</button><br>
+                        <label for="od_zip" class="sound_only">우편번호</label>
+                        <input type="text" name="od_zip" value="<?php echo $od['od_zip1'].$od['od_zip2']; ?>" id="od_zip" required class="frm_input required" size="5">
+                        <button type="button" class="btn_frmline" onclick="win_zip('frmorderform3', 'od_zip', 'od_addr1', 'od_addr2', 'od_addr3', 'od_addr_jibeon');">주소 검색</button><br>
                         <span id="od_win_zip" style="display:block"></span>
                         <input type="text" name="od_addr1" value="<?php echo $od['od_addr1']; ?>" id="od_addr1" required class="frm_input required" size="35">
                         <label for="od_addr1">기본주소</label><br>
@@ -872,12 +869,9 @@ add_javascript(G5_POSTCODE_JS, 0);    //다음 주소 js
                 <tr>
                     <th scope="row"><span class="sound_only">받으시는 분 </span>주소</th>
                     <td>
-                        <label for="od_b_zip1" class="sound_only">우편번호 앞자리</label>
-                        <input type="text" name="od_b_zip1" value="<?php echo $od['od_b_zip1']; ?>" id="od_b_zip1" required class="frm_input required" size="4">
-                        -
-                        <label for="od_b_zip2" class="sound_only">우편번호 뒷자리</label>
-                        <input type="text" name="od_b_zip2" value="<?php echo $od['od_b_zip2']; ?>" id="od_b_zip2" required class="frm_input required" size="4">
-                        <button type="button" class="btn_frmline" onclick="win_zip('frmorderform3', 'od_b_zip1', 'od_b_zip2', 'od_b_addr1', 'od_b_addr2', 'od_b_addr3', 'od_b_addr_jibeon');">주소 검색</button><br>
+                        <label for="od_b_zip" class="sound_only">우편번호</label>
+                        <input type="text" name="od_b_zip" value="<?php echo $od['od_b_zip1'].$od['od_b_zip2']; ?>" id="od_b_zip" required class="frm_input required" size="5">
+                        <button type="button" class="btn_frmline" onclick="win_zip('frmorderform3', 'od_b_zip', 'od_b_addr1', 'od_b_addr2', 'od_b_addr3', 'od_b_addr_jibeon');">주소 검색</button><br>
                         <input type="text" name="od_b_addr1" value="<?php echo $od['od_b_addr1']; ?>" id="od_b_addr1" required class="frm_input required" size="35">
                         <label for="od_b_addr1">기본주소</label>
                         <input type="text" name="od_b_addr2" value="<?php echo $od['od_b_addr2']; ?>" id="od_b_addr2" class="frm_input" size="35">
diff --git a/adm/shop_admin/orderformupdate.php b/adm/shop_admin/orderformupdate.php
index fc425c3c1..1ff37a11c 100644
--- a/adm/shop_admin/orderformupdate.php
+++ b/adm/shop_admin/orderformupdate.php
@@ -3,6 +3,11 @@ $sub_menu = '400400';
 include_once('./_common.php');
 
 if($_POST['mod_type'] == 'info') {
+    $od_zip1   = substr($_POST['od_zip'], 0, 3);
+    $od_zip2   = substr($_POST['od_zip'], 3);
+    $od_b_zip1 = substr($_POST['od_b_zip'], 0, 3);
+    $od_b_zip2 = substr($_POST['od_b_zip'], 3);
+
     $sql = " update {$g5['g5_shop_order_table']}
                 set od_name = '$od_name',
                     od_tel = '$od_tel',
diff --git a/adm/shop_admin/orderprintresult.php b/adm/shop_admin/orderprintresult.php
index 2120f3bfd..461e9f111 100644
--- a/adm/shop_admin/orderprintresult.php
+++ b/adm/shop_admin/orderprintresult.php
@@ -104,7 +104,7 @@ if ($csv == 'csv')
             $ct_send_cost = iconv_euckr($ct_send_cost);
         }
 
-        echo '"'.$row['od_b_zip1'].'-'.$row['od_b_zip2'].'"'.',';
+        echo '"'.$row['od_b_zip1'].$row['od_b_zip2'].'"'.',';
         echo '"'.print_address($row['od_b_addr1'], $row['od_b_addr2'], $row['od_b_addr3'], $row['od_b_addr_jibeon']).'"'.',';
         echo '"'.$row['od_b_name'].'"'.',';
         //echo '"'.multibyte_digit((string)$row[od_b_tel]).'"'.',';
@@ -209,7 +209,7 @@ if ($csv == 'xls')
 
         $row = array_map('iconv_euckr', $row);
 
-        $worksheet->write($i, 0, $row['od_b_zip1'].'-'.$row['od_b_zip2']);
+        $worksheet->write($i, 0, $row['od_b_zip1'].$row['od_b_zip2']);
         $worksheet->write($i, 1, print_address($row['od_b_addr1'], $row['od_b_addr2'], $row['od_b_addr3'], $row['od_b_addr_jibeon']));
         $worksheet->write($i, 2, $row['od_b_name']);
         $worksheet->write($i, 3, ' '.$row['od_b_tel']);
@@ -291,8 +291,8 @@ if (mysql_num_rows($result) == 0)
         $row1 = sql_fetch($sql1);
 
         // 1.03.02
-        $row1['od_addr'] = '('.$row1['od_zip1'].'-'.$row1['od_zip2'].') '.print_address($row1['od_addr1'], $row1['od_addr2'], $row1['od_addr3'], $row1['od_addr_jibeon']);
-        $row1['od_b_addr'] = '('.$row1['od_b_zip1'].'-'.$row1['od_b_zip2'].') '.print_address($row1['od_b_addr1'], $row1['od_b_addr2'], $row1['od_b_addr3'], $row1['od_b_addr_jibeon']);
+        $row1['od_addr'] = '('.$row1['od_zip1'].$row1['od_zip2'].') '.print_address($row1['od_addr1'], $row1['od_addr2'], $row1['od_addr3'], $row1['od_addr_jibeon']);
+        $row1['od_b_addr'] = '('.$row1['od_b_zip1'].$row1['od_b_zip2'].') '.print_address($row1['od_b_addr1'], $row1['od_b_addr2'], $row1['od_b_addr3'], $row1['od_b_addr_jibeon']);
 
         $row1['od_addr'] = ($row1['od_addr']) ? $row1['od_addr'] : '입력안함';
         $row1['od_tel'] = ($row1['od_tel']) ? $row1['od_tel'] : '입력안함';
diff --git a/mobile/shop/orderform.php b/mobile/shop/orderform.php
index 2f00d6aeb..9bd0c86f4 100644
--- a/mobile/shop/orderform.php
+++ b/mobile/shop/orderform.php
@@ -215,7 +215,7 @@ ob_start();
                 <span class="total_price total_span"><span>주문금액 </span><strong><?php echo number_format($sell_price); ?></strong></span>
                 <span class="total_point total_span"><span>적립포인트 </span><strong><?php echo number_format($sum['point']); ?></strong></span>
             </div>
-            
+
         </li>
 
         <?php
@@ -312,12 +312,9 @@ require_once(G5_MSHOP_PATH.'/'.$default['de_pg_service'].'/orderform.1.php');
             <tr>
                 <th scope="row">주소</th>
                 <td>
-                    <label for="od_zip1" class="sound_only">우편번호 앞자리<strong class="sound_only"> 필수</strong></label>
-                    <input type="text" name="od_zip1" value="<?php echo $member['mb_zip1'] ?>" id="od_zip1" required class="frm_input required" size="3" maxlength="3">
-                    -
-                    <label for="od_zip2" class="sound_only">우편번호 뒷자리<strong class="sound_only"> 필수</strong></label>
-                    <input type="text" name="od_zip2" value="<?php echo $member['mb_zip2'] ?>" id="od_zip2" required class="frm_input required" size="3" maxlength="3">
-                    <button type="button" class="btn_frmline" onclick="win_zip('forderform', 'od_zip1', 'od_zip2', 'od_addr1', 'od_addr2', 'od_addr3', 'od_addr_jibeon');">주소 검색</button><br>
+                    <label for="od_zip" class="sound_only">우편번호<strong class="sound_only"> 필수</strong></label>
+                    <input type="text" name="od_zip" value="<?php echo $member['mb_zip1'].$member['mb_zip2']; ?>" id="od_zip" required class="frm_input required" size="5" maxlength="6">
+                    <button type="button" class="btn_frmline" onclick="win_zip('forderform', 'od_zip', 'od_addr1', 'od_addr2', 'od_addr3', 'od_addr_jibeon');">주소 검색</button><br>
                     <label for="od_addr1" class="sound_only">기본주소<strong class="sound_only"> 필수</strong></label>
                     <input type="text" name="od_addr1" value="<?php echo $member['mb_addr1'] ?>" id="od_addr1" required class="frm_input frm_address required">
                     <label for="od_addr2" class="sound_only">상세주소</label>
@@ -439,12 +436,9 @@ require_once(G5_MSHOP_PATH.'/'.$default['de_pg_service'].'/orderform.1.php');
             <tr>
                 <th scope="row">주소</th>
                 <td id="sod_frm_addr">
-                    <label for="od_b_zip1" class="sound_only">우편번호 앞자리<strong class="sound_only"> 필수</strong></label>
-                    <input type="text" name="od_b_zip1" id="od_b_zip1" required class="frm_input required" size="3" maxlength="3">
-                    -
-                    <label for="od_b_zip2" class="sound_only">우편번호 뒷자리<strong class="sound_only"> 필수</strong></label>
-                    <input type="text" name="od_b_zip2" id="od_b_zip2" required class="frm_input required" size="3" maxlength="3">
-                    <button type="button" class="btn_frmline" onclick="win_zip('forderform', 'od_b_zip1', 'od_b_zip2', 'od_b_addr1', 'od_b_addr2', 'od_b_addr3', 'od_b_addr_jibeon');">주소 검색</button><br>
+                    <label for="od_b_zip" class="sound_only">우편번호<strong class="sound_only"> 필수</strong></label>
+                    <input type="text" name="od_b_zip" id="od_b_zip" required class="frm_input required" size="5" maxlength="6">
+                    <button type="button" class="btn_frmline" onclick="win_zip('forderform', 'od_b_zip', 'od_b_addr1', 'od_b_addr2', 'od_b_addr3', 'od_b_addr_jibeon');">주소 검색</button><br>
                     <label for="od_b_addr1" class="sound_only">기본주소<strong class="sound_only"> 필수</strong></label>
                     <input type="text" name="od_b_addr1" id="od_b_addr1" required class="frm_input frm_address required">
                     <label for="od_b_addr2" class="sound_only">상세주소</label>
@@ -902,12 +896,11 @@ $(function() {
     });
 
     $("#od_b_addr2").focus(function() {
-        var zip1 = $("#od_b_zip1").val().replace(/[^0-9]/g, "");
-        var zip2 = $("#od_b_zip2").val().replace(/[^0-9]/g, "");
-        if(zip1 == "" || zip2 == "")
+        var zip = $("#od_b_zip").val().replace(/[^0-9]/g, "");
+        if(zip == "")
             return false;
 
-        var code = String(zip1) + String(zip2);
+        var code = String(zip);
 
         if(zipcode == code)
             return false;
@@ -949,8 +942,7 @@ $(function() {
             f.od_b_name.value        = addr[0];
             f.od_b_tel.value         = addr[1];
             f.od_b_hp.value          = addr[2];
-            f.od_b_zip1.value        = addr[3];
-            f.od_b_zip2.value        = addr[4];
+            f.od_b_zip.value         = addr[3] + addr[4];
             f.od_b_addr1.value       = addr[5];
             f.od_b_addr2.value       = addr[6];
             f.od_b_addr3.value       = addr[7];
@@ -1172,7 +1164,7 @@ function pay_approval()
     f.rcvr_tel1.value = pf.od_b_tel.value;
     f.rcvr_tel2.value = pf.od_b_hp.value;
     f.rcvr_mail.value = pf.od_email.value;
-    f.rcvr_zipx.value = pf.od_b_zip1.value + pf.od_b_zip2.value;
+    f.rcvr_zipx.value = pf.od_b_zip.value;
     f.rcvr_add1.value = pf.od_b_addr1.value;
     f.rcvr_add2.value = pf.od_b_addr2.value;
     f.settle_method.value = settle_method;
@@ -1301,8 +1293,7 @@ function orderfield_check(f)
     check_field(f.od_tel, "주문하시는 분 전화번호를 입력하십시오.");
     check_field(f.od_addr1, "주소검색을 이용하여 주문하시는 분 주소를 입력하십시오.");
     //check_field(f.od_addr2, " 주문하시는 분의 상세주소를 입력하십시오.");
-    check_field(f.od_zip1, "");
-    check_field(f.od_zip2, "");
+    check_field(f.od_zip, "");
 
     clear_field(f.od_email);
     if(f.od_email.value=='' || f.od_email.value.search(/(\S+)@(\S+)\.(\S+)/) == -1)
@@ -1319,8 +1310,7 @@ function orderfield_check(f)
     check_field(f.od_b_tel, "받으시는 분 전화번호를 입력하십시오.");
     check_field(f.od_b_addr1, "주소검색을 이용하여 받으시는 분 주소를 입력하십시오.");
     //check_field(f.od_b_addr2, "받으시는 분의 상세주소를 입력하십시오.");
-    check_field(f.od_b_zip1, "");
-    check_field(f.od_b_zip2, "");
+    check_field(f.od_b_zip, "");
 
     var od_settle_bank = document.getElementById("od_settle_bank");
     if (od_settle_bank) {
@@ -1454,20 +1444,18 @@ function gumae2baesong(checked) {
         f.od_b_name.value = f.od_name.value;
         f.od_b_tel.value  = f.od_tel.value;
         f.od_b_hp.value   = f.od_hp.value;
-        f.od_b_zip1.value = f.od_zip1.value;
-        f.od_b_zip2.value = f.od_zip2.value;
+        f.od_b_zip.value  = f.od_zip.value;
         f.od_b_addr1.value = f.od_addr1.value;
         f.od_b_addr2.value = f.od_addr2.value;
         f.od_b_addr3.value = f.od_addr3.value;
         f.od_b_addr_jibeon.value = f.od_addr_jibeon.value;
 
-        calculate_sendcost(String(f.od_b_zip1.value) + String(f.od_b_zip2.value));
+        calculate_sendcost(String(f.od_b_zip.value));
     } else {
         f.od_b_name.value = "";
         f.od_b_tel.value  = "";
         f.od_b_hp.value   = "";
-        f.od_b_zip1.value = "";
-        f.od_b_zip2.value = "";
+        f.od_b_zip.value = "";
         f.od_b_addr1.value = "";
         f.od_b_addr2.value = "";
         f.od_b_addr3.value = "";
diff --git a/mobile/shop/orderformupdate.php b/mobile/shop/orderformupdate.php
index b85e01a98..ddb95c9fc 100644
--- a/mobile/shop/orderformupdate.php
+++ b/mobile/shop/orderformupdate.php
@@ -235,8 +235,9 @@ if ((int)($send_cost - $tot_sc_cp_price) !== (int)($i_send_cost - $i_send_coupon
 }
 
 // 추가배송비가 상이함
-$od_b_zip1 = preg_replace('/[^0-9]/', '', $od_b_zip1);
-$od_b_zip2 = preg_replace('/[^0-9]/', '', $od_b_zip2);
+$od_b_zip   = preg_replace('/[^0-9]/', '', $od_b_zip);
+$od_b_zip1  = substr($od_b_zip, 0, 3);
+$od_b_zip2  = substr($od_b_zip, 3);
 $zipcode = $od_b_zip1 . $od_b_zip2;
 $sql = " select sc_id, sc_price from {$g5['g5_shop_sendcost_table']} where sc_zip1 <= '$zipcode' and sc_zip2 >= '$zipcode' ";
 $tmp = sql_fetch($sql);
@@ -443,8 +444,9 @@ $od_email         = get_email_address($od_email);
 $od_name          = clean_xss_tags($od_name);
 $od_tel           = clean_xss_tags($od_tel);
 $od_hp            = clean_xss_tags($od_hp);
-$od_zip1          = preg_replace('/[^0-9]/', '', $od_zip1);
-$od_zip2          = preg_replace('/[^0-9]/', '', $od_zip2);
+$od_zip           = preg_replace('/[^0-9]/', '', $od_zip);
+$od_zip1          = substr($od_zip, 0, 3);
+$od_zip2          = substr($od_zip, 3);
 $od_addr1         = clean_xss_tags($od_addr1);
 $od_addr2         = clean_xss_tags($od_addr2);
 $od_addr3         = clean_xss_tags($od_addr3);
diff --git a/mobile/shop/orderinquiryview.php b/mobile/shop/orderinquiryview.php
index 1f4ec709d..40d24ebfa 100644
--- a/mobile/shop/orderinquiryview.php
+++ b/mobile/shop/orderinquiryview.php
@@ -467,7 +467,7 @@ if($od['od_pg'] == 'lg') {
                 </tr>
                 <tr>
                     <th scope="row">주 소</th>
-                    <td><?php echo get_text(sprintf("(%s-%s)", $od['od_zip1'], $od['od_zip2']).' '.print_address($od['od_addr1'], $od['od_addr2'], $od['od_addr3'], $od['od_addr_jibeon'])); ?></td>
+                    <td><?php echo get_text(sprintf("(%s%s)", $od['od_zip1'], $od['od_zip2']).' '.print_address($od['od_addr1'], $od['od_addr2'], $od['od_addr3'], $od['od_addr_jibeon'])); ?></td>
                 </tr>
                 <tr>
                     <th scope="row">E-mail</th>
@@ -503,7 +503,7 @@ if($od['od_pg'] == 'lg') {
                 </tr>
                 <tr>
                     <th scope="row">주 소</th>
-                    <td><?php echo get_text(sprintf("(%s-%s)", $od['od_b_zip1'], $od['od_b_zip2']).' '.print_address($od['od_b_addr1'], $od['od_b_addr2'], $od['od_b_addr3'], $od['od_b_addr_jibeon'])); ?></td>
+                    <td><?php echo get_text(sprintf("(%s%s)", $od['od_b_zip1'], $od['od_b_zip2']).' '.print_address($od['od_b_addr1'], $od['od_b_addr2'], $od['od_b_addr3'], $od['od_b_addr_jibeon'])); ?></td>
                 </tr>
                 <?php
                 // 희망배송일을 사용한다면
diff --git a/shop/mail/orderupdate1.mail.php b/shop/mail/orderupdate1.mail.php
index 1bee475b2..a8e49d015 100644
--- a/shop/mail/orderupdate1.mail.php
+++ b/shop/mail/orderupdate1.mail.php
@@ -148,7 +148,7 @@ $ft_a_st = 'display:block;padding:30px 0;background:#484848;color:#fff;text-alig
         </tr>
         <tr>
             <th scope="row" style="<?php echo $th_st; ?>">주소</th>
-            <td style="<?php echo $td_st; ?>"><?php echo sprintf("(%s-%s)", $od_zip1, $od_zip2).' '.print_address($od_addr1, $od_addr2, $od_addr3, $od_addr_jibeon); ?></td>
+            <td style="<?php echo $td_st; ?>"><?php echo sprintf("(%s%s)", $od_zip1, $od_zip2).' '.print_address($od_addr1, $od_addr2, $od_addr3, $od_addr_jibeon); ?></td>
         </tr>
 
         <?php if ($od_hope_date) { ?>
@@ -181,7 +181,7 @@ $ft_a_st = 'display:block;padding:30px 0;background:#484848;color:#fff;text-alig
         </tr>
         <tr>
             <th scope="row" style="<?php echo $th_st; ?>">주소</th>
-            <td style="<?php echo $td_st; ?>"><?php echo sprintf("(%s-%s)", $od_b_zip1, $od_b_zip2).' '.print_address($od_b_addr1, $od_b_addr2, $od_b_addr3, $od_b_addr_jibeon); ?></td>
+            <td style="<?php echo $td_st; ?>"><?php echo sprintf("(%s%s)", $od_b_zip1, $od_b_zip2).' '.print_address($od_b_addr1, $od_b_addr2, $od_b_addr3, $od_b_addr_jibeon); ?></td>
         </tr>
         <tr>
             <th scope="row" style="<?php echo $th_st; ?>">전하실 말씀</th>
diff --git a/shop/mail/orderupdate2.mail.php b/shop/mail/orderupdate2.mail.php
index e8d3e872a..15e770bb0 100644
--- a/shop/mail/orderupdate2.mail.php
+++ b/shop/mail/orderupdate2.mail.php
@@ -148,7 +148,7 @@ $ft_a_st = 'display:block;padding:30px 0;background:#484848;color:#fff;text-alig
         </tr>
         <tr>
             <th scope="row" style="<?php echo $th_st; ?>">주소</th>
-            <td style="<?php echo $td_st; ?>"><?php echo sprintf("(%s-%s)", $od_zip1, $od_zip2).' '.print_address($od_addr1, $od_addr2, $od_addr3, $od_addr_jibeon); ?></td>
+            <td style="<?php echo $td_st; ?>"><?php echo sprintf("(%s%s)", $od_zip1, $od_zip2).' '.print_address($od_addr1, $od_addr2, $od_addr3, $od_addr_jibeon); ?></td>
         </tr>
 
         <?php if ($od_hope_date) { ?>
@@ -181,7 +181,7 @@ $ft_a_st = 'display:block;padding:30px 0;background:#484848;color:#fff;text-alig
         </tr>
         <tr>
             <th scope="row" style="<?php echo $th_st; ?>">주소</th>
-            <td style="<?php echo $td_st; ?>"><?php echo sprintf("(%s-%s)", $od_b_zip1, $od_b_zip2).' '.print_address($od_b_addr1, $od_b_addr2, $od_b_addr3, $od_b_addr_jibeon); ?></td>
+            <td style="<?php echo $td_st; ?>"><?php echo sprintf("(%s%s)", $od_b_zip1, $od_b_zip2).' '.print_address($od_b_addr1, $od_b_addr2, $od_b_addr3, $od_b_addr_jibeon); ?></td>
         </tr>
         <tr>
             <th scope="row" style="<?php echo $th_st; ?>">전하실 말씀</th>
diff --git a/shop/mail/orderupdate3.mail.php b/shop/mail/orderupdate3.mail.php
index c50230f8c..11ba98f95 100644
--- a/shop/mail/orderupdate3.mail.php
+++ b/shop/mail/orderupdate3.mail.php
@@ -71,7 +71,7 @@ $ft_a_st = 'display:block;padding:30px 0;background:#484848;color:#fff;text-alig
         </tr>
         <tr>
             <th scope="row" style="<?php echo $th_st; ?>">주소</th>
-            <td style="<?php echo $td_st; ?>"><?php echo sprintf("(%s-%s)", $od_zip1, $od_zip2).' '.print_address($od_addr1, $od_addr2, $od_addr3, $od_addr_jibeon); ?></td>
+            <td style="<?php echo $td_st; ?>"><?php echo sprintf("(%s%s)", $od_zip1, $od_zip2).' '.print_address($od_addr1, $od_addr2, $od_addr3, $od_addr_jibeon); ?></td>
         </tr>
 
         <?php if ($od_hope_date) { ?>
@@ -105,7 +105,7 @@ $ft_a_st = 'display:block;padding:30px 0;background:#484848;color:#fff;text-alig
         </tr>
         <tr>
             <th scope="row" style="<?php echo $th_st; ?>">주소</th>
-            <td style="<?php echo $td_st; ?>"><?php echo sprintf("(%s-%s)", $od_b_zip1, $od_b_zip2).' '.print_address($od_b_addr1, $od_b_addr2, $od_b_addr3, $od_b_addr_jibeon); ?></td>
+            <td style="<?php echo $td_st; ?>"><?php echo sprintf("(%s%s)", $od_b_zip1, $od_b_zip2).' '.print_address($od_b_addr1, $od_b_addr2, $od_b_addr3, $od_b_addr_jibeon); ?></td>
         </tr>
         <tr>
             <th scope="row" style="<?php echo $th_st; ?>">전하실 말씀</th>
diff --git a/shop/orderform.php b/shop/orderform.php
index 317becbff..6f246a3ef 100644
--- a/shop/orderform.php
+++ b/shop/orderform.php
@@ -333,12 +333,9 @@ require_once('./'.$default['de_pg_service'].'/orderform.1.php');
             <tr>
                 <th scope="row">주소</th>
                 <td>
-                    <label for="od_zip1" class="sound_only">우편번호 앞자리<strong class="sound_only"> 필수</strong></label>
-                    <input type="text" name="od_zip1" value="<?php echo $member['mb_zip1'] ?>" id="od_zip1" required class="frm_input required" size="3" maxlength="3">
-                    -
-                    <label for="od_zip2" class="sound_only">우편번호 뒷자리<strong class="sound_only"> 필수</strong></label>
-                    <input type="text" name="od_zip2" value="<?php echo $member['mb_zip2'] ?>" id="od_zip2" required class="frm_input required" size="3" maxlength="3">
-                    <button type="button" class="btn_frmline" onclick="win_zip('forderform', 'od_zip1', 'od_zip2', 'od_addr1', 'od_addr2', 'od_addr3', 'od_addr_jibeon');">주소 검색</button><br>
+                    <label for="od_zip" class="sound_only">우편번호<strong class="sound_only"> 필수</strong></label>
+                    <input type="text" name="od_zip" value="<?php echo $member['mb_zip1'].$member['mb_zip2']; ?>" id="od_zip" required class="frm_input required" size="5" maxlength="6">
+                    <button type="button" class="btn_frmline" onclick="win_zip('forderform', 'od_zip', 'od_addr1', 'od_addr2', 'od_addr3', 'od_addr_jibeon');">주소 검색</button><br>
                     <input type="text" name="od_addr1" value="<?php echo $member['mb_addr1'] ?>" id="od_addr1" required class="frm_input frm_address required" size="60">
                     <label for="od_addr1">기본주소<strong class="sound_only"> 필수</strong></label><br>
                     <input type="text" name="od_addr2" value="<?php echo $member['mb_addr2'] ?>" id="od_addr2" class="frm_input frm_address" size="60">
@@ -461,12 +458,9 @@ require_once('./'.$default['de_pg_service'].'/orderform.1.php');
             <tr>
                 <th scope="row">주소</th>
                 <td id="sod_frm_addr">
-                    <label for="od_b_zip1" class="sound_only">우편번호 앞자리<strong class="sound_only"> 필수</strong></label>
-                    <input type="text" name="od_b_zip1" id="od_b_zip1" required class="frm_input required" size="3" maxlength="3">
-                    -
-                    <label for="od_b_zip2" class="sound_only">우편번호 뒷자리<strong class="sound_only"> 필수</strong></label>
-                    <input type="text" name="od_b_zip2" id="od_b_zip2" required class="frm_input required" size="3" maxlength="3">
-                    <button type="button" class="btn_frmline" onclick="win_zip('forderform', 'od_b_zip1', 'od_b_zip2', 'od_b_addr1', 'od_b_addr2', 'od_b_addr3', 'od_b_addr_jibeon');">주소 검색</button><br>
+                    <label for="od_b_zip" class="sound_only">우편번호<strong class="sound_only"> 필수</strong></label>
+                    <input type="text" name="od_b_zip" id="od_b_zip" required class="frm_input required" size="5" maxlength="6">
+                    <button type="button" class="btn_frmline" onclick="win_zip('forderform', 'od_b_zip', 'od_b_addr1', 'od_b_addr2', 'od_b_addr3', 'od_b_addr_jibeon');">주소 검색</button><br>
                     <input type="text" name="od_b_addr1" id="od_b_addr1" required class="frm_input frm_address required" size="60">
                     <label for="od_b_addr1">기본주소<strong class="sound_only"> 필수</strong></label><br>
                     <input type="text" name="od_b_addr2" id="od_b_addr2" class="frm_input frm_address" size="60">
@@ -925,12 +919,11 @@ $(function() {
     });
 
     $("#od_b_addr2").focus(function() {
-        var zip1 = $("#od_b_zip1").val().replace(/[^0-9]/g, "");
-        var zip2 = $("#od_b_zip2").val().replace(/[^0-9]/g, "");
-        if(zip1 == "" || zip2 == "")
+        var zip = $("#od_b_zip").val().replace(/[^0-9]/g, "");
+        if(zip == "")
             return false;
 
-        var code = String(zip1) + String(zip2);
+        var code = String(zip);
 
         if(zipcode == code)
             return false;
@@ -968,8 +961,7 @@ $(function() {
             f.od_b_name.value        = addr[0];
             f.od_b_tel.value         = addr[1];
             f.od_b_hp.value          = addr[2];
-            f.od_b_zip1.value        = addr[3];
-            f.od_b_zip2.value        = addr[4];
+            f.od_b_zip.value         = addr[3] + addr[4];
             f.od_b_addr1.value       = addr[5];
             f.od_b_addr2.value       = addr[6];
             f.od_b_addr3.value       = addr[7];
@@ -1172,8 +1164,7 @@ function forderform_check(f)
     check_field(f.od_tel, "주문하시는 분 전화번호를 입력하십시오.");
     check_field(f.od_addr1, "주소검색을 이용하여 주문하시는 분 주소를 입력하십시오.");
     //check_field(f.od_addr2, " 주문하시는 분의 상세주소를 입력하십시오.");
-    check_field(f.od_zip1, "");
-    check_field(f.od_zip2, "");
+    check_field(f.od_zip, "");
 
     clear_field(f.od_email);
     if(f.od_email.value=='' || f.od_email.value.search(/(\S+)@(\S+)\.(\S+)/) == -1)
@@ -1190,8 +1181,7 @@ function forderform_check(f)
     check_field(f.od_b_tel, "받으시는 분 전화번호를 입력하십시오.");
     check_field(f.od_b_addr1, "주소검색을 이용하여 받으시는 분 주소를 입력하십시오.");
     //check_field(f.od_b_addr2, "받으시는 분의 상세주소를 입력하십시오.");
-    check_field(f.od_b_zip1, "");
-    check_field(f.od_b_zip2, "");
+    check_field(f.od_b_zip, "");
 
     var od_settle_bank = document.getElementById("od_settle_bank");
     if (od_settle_bank) {
@@ -1389,7 +1379,7 @@ function forderform_check(f)
     f.rcvr_tel1.value = f.od_b_tel.value;
     f.rcvr_tel2.value = f.od_b_hp.value;
     f.rcvr_mail.value = f.od_email.value;
-    f.rcvr_zipx.value = f.od_b_zip1.value + f.od_b_zip2.value;
+    f.rcvr_zipx.value = f.od_b_zip.value;
     f.rcvr_add1.value = f.od_b_addr1.value;
     f.rcvr_add2.value = f.od_b_addr2.value;
 
@@ -1411,7 +1401,7 @@ function forderform_check(f)
     f.LGD_RECEIVER.value = f.od_b_name.value;
     f.LGD_RECEIVERPHONE.value = f.od_b_hp.value;
     <?php if($default['de_escrow_use']) { ?>
-    f.LGD_ESCROW_ZIPCODE.value = f.od_b_zip1.value + f.od_b_zip2.value;
+    f.LGD_ESCROW_ZIPCODE.value = f.od_b_zip.value;
     f.LGD_ESCROW_ADDRESS1.value = f.od_b_addr1.value;
     f.LGD_ESCROW_ADDRESS2.value = f.od_b_addr2.value;
     f.LGD_ESCROW_BUYERPHONE.value = f.od_hp.value;
@@ -1432,7 +1422,7 @@ function forderform_check(f)
     f.buyertel.value    = f.od_hp.value ? f.od_hp.value : f.od_tel.value;
     f.recvname.value    = f.od_b_name.value;
     f.recvtel.value     = f.od_b_hp.value ? f.od_b_hp.value : f.od_b_tel.value;
-    f.recvpostnum.value = f.od_b_zip1.value + f.od_b_zip2.value;
+    f.recvpostnum.value = f.od_b_zip.value;
     f.recvaddr.value    = f.od_b_addr1.value + " " +f.od_b_addr2.value;
 
     if(f.gopaymethod.value != "무통장") {
@@ -1454,20 +1444,18 @@ function gumae2baesong(checked) {
         f.od_b_name.value = f.od_name.value;
         f.od_b_tel.value  = f.od_tel.value;
         f.od_b_hp.value   = f.od_hp.value;
-        f.od_b_zip1.value = f.od_zip1.value;
-        f.od_b_zip2.value = f.od_zip2.value;
+        f.od_b_zip.value  = f.od_zip.value;
         f.od_b_addr1.value = f.od_addr1.value;
         f.od_b_addr2.value = f.od_addr2.value;
         f.od_b_addr3.value = f.od_addr3.value;
         f.od_b_addr_jibeon.value = f.od_addr_jibeon.value;
 
-        calculate_sendcost(String(f.od_b_zip1.value) + String(f.od_b_zip2.value));
+        calculate_sendcost(String(f.od_b_zip.value));
     } else {
         f.od_b_name.value = "";
         f.od_b_tel.value  = "";
         f.od_b_hp.value   = "";
-        f.od_b_zip1.value = "";
-        f.od_b_zip2.value = "";
+        f.od_b_zip.value  = "";
         f.od_b_addr1.value = "";
         f.od_b_addr2.value = "";
         f.od_b_addr3.value = "";
diff --git a/shop/orderformupdate.php b/shop/orderformupdate.php
index 119b3967b..cb1041ac1 100644
--- a/shop/orderformupdate.php
+++ b/shop/orderformupdate.php
@@ -220,9 +220,10 @@ if ((int)($send_cost - $tot_sc_cp_price) !== (int)($i_send_cost - $i_send_coupon
 }
 
 // 추가배송비가 상이함
-$od_b_zip1 = preg_replace('/[^0-9]/', '', $od_b_zip1);
-$od_b_zip2 = preg_replace('/[^0-9]/', '', $od_b_zip2);
-$zipcode = $od_b_zip1 . $od_b_zip2;
+$od_b_zip   = preg_replace('/[^0-9]/', '', $od_b_zip);
+$od_b_zip1  = substr($od_b_zip, 0, 3);
+$od_b_zip2  = substr($od_b_zip, 3);
+$zipcode = $od_b_zip;
 $sql = " select sc_id, sc_price from {$g5['g5_shop_sendcost_table']} where sc_zip1 <= '$zipcode' and sc_zip2 >= '$zipcode' ";
 $tmp = sql_fetch($sql);
 if(!$tmp['sc_id'])
@@ -428,8 +429,9 @@ $od_email         = get_email_address($od_email);
 $od_name          = clean_xss_tags($od_name);
 $od_tel           = clean_xss_tags($od_tel);
 $od_hp            = clean_xss_tags($od_hp);
-$od_zip1          = preg_replace('/[^0-9]/', '', $od_zip1);
-$od_zip2          = preg_replace('/[^0-9]/', '', $od_zip2);
+$od_zip           = preg_replace('/[^0-9]/', '', $od_zip);
+$od_zip1          = substr($od_zip, 0, 3);
+$od_zip2          = substr($od_zip, 3);
 $od_addr1         = clean_xss_tags($od_addr1);
 $od_addr2         = clean_xss_tags($od_addr2);
 $od_addr3         = clean_xss_tags($od_addr3);
diff --git a/shop/orderinquiryview.php b/shop/orderinquiryview.php
index 1e47f5e9a..2125dfcdd 100644
--- a/shop/orderinquiryview.php
+++ b/shop/orderinquiryview.php
@@ -484,7 +484,7 @@ if($od['od_pg'] == 'lg') {
                 </tr>
                 <tr>
                     <th scope="row">주 소</th>
-                    <td><?php echo get_text(sprintf("(%s-%s)", $od['od_zip1'], $od['od_zip2']).' '.print_address($od['od_addr1'], $od['od_addr2'], $od['od_addr3'], $od['od_addr_jibeon'])); ?></td>
+                    <td><?php echo get_text(sprintf("(%s%s)", $od['od_zip1'], $od['od_zip2']).' '.print_address($od['od_addr1'], $od['od_addr2'], $od['od_addr3'], $od['od_addr_jibeon'])); ?></td>
                 </tr>
                 <tr>
                     <th scope="row">E-mail</th>
@@ -519,7 +519,7 @@ if($od['od_pg'] == 'lg') {
                 </tr>
                 <tr>
                     <th scope="row">주 소</th>
-                    <td><?php echo get_text(sprintf("(%s-%s)", $od['od_b_zip1'], $od['od_b_zip2']).' '.print_address($od['od_b_addr1'], $od['od_b_addr2'], $od['od_b_addr3'], $od['od_b_addr_jibeon'])); ?></td>
+                    <td><?php echo get_text(sprintf("(%s%s)", $od['od_b_zip1'], $od['od_b_zip2']).' '.print_address($od['od_b_addr1'], $od['od_b_addr2'], $od['od_b_addr3'], $od['od_b_addr_jibeon'])); ?></td>
                 </tr>
                 <?php
                 // 희망배송일을 사용한다면

From af2493f656588b4a0c16b87174c142c725e5b7ad Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Fri, 17 Jul 2015 14:50:21 +0900
Subject: [PATCH 14/28] =?UTF-8?q?=EB=B0=B0=EC=86=A1=EB=A6=AC=20=EB=AA=A9?=
 =?UTF-8?q?=EB=A1=9D=20=EC=9A=B0=ED=8E=B8=EB=B2=88=ED=98=B8=20=EA=B4=80?=
 =?UTF-8?q?=EB=A0=A8=20=EC=8A=A4=ED=81=AC=EB=A6=BD=ED=8A=B8=20=EC=88=98?=
 =?UTF-8?q?=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 mobile/shop/orderaddress.php | 3 +--
 shop/orderaddress.php        | 3 +--
 2 files changed, 2 insertions(+), 4 deletions(-)

diff --git a/mobile/shop/orderaddress.php b/mobile/shop/orderaddress.php
index c782a60de..c4297c767 100644
--- a/mobile/shop/orderaddress.php
+++ b/mobile/shop/orderaddress.php
@@ -65,8 +65,7 @@ $(function() {
         f.od_b_name.value        = addr[0];
         f.od_b_tel.value         = addr[1];
         f.od_b_hp.value          = addr[2];
-        f.od_b_zip1.value        = addr[3];
-        f.od_b_zip2.value        = addr[4];
+        f.od_b_zip.value         = addr[3] + addr[4];
         f.od_b_addr1.value       = addr[5];
         f.od_b_addr2.value       = addr[6];
         f.od_b_addr3.value       = addr[7];
diff --git a/shop/orderaddress.php b/shop/orderaddress.php
index 0e2586198..826e28c38 100644
--- a/shop/orderaddress.php
+++ b/shop/orderaddress.php
@@ -117,8 +117,7 @@ $(function() {
         f.od_b_name.value        = addr[0];
         f.od_b_tel.value         = addr[1];
         f.od_b_hp.value          = addr[2];
-        f.od_b_zip1.value        = addr[3];
-        f.od_b_zip2.value        = addr[4];
+        f.od_b_zip.value         = addr[3] + addr[4];
         f.od_b_addr1.value       = addr[5];
         f.od_b_addr2.value       = addr[6];
         f.od_b_addr3.value       = addr[7];

From e37f5554d26edd7e4747507ffb88067aeedc6f4a Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Fri, 17 Jul 2015 15:49:28 +0900
Subject: [PATCH 15/28] =?UTF-8?q?=EC=A4=91=EB=B3=B5=20=EC=BD=94=EB=93=9C?=
 =?UTF-8?q?=20=EC=82=AD=EC=A0=9C?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 adm/shop_admin/configformupdate.php | 1 -
 1 file changed, 1 deletion(-)

diff --git a/adm/shop_admin/configformupdate.php b/adm/shop_admin/configformupdate.php
index 77f72efd9..c1a3bc4e0 100644
--- a/adm/shop_admin/configformupdate.php
+++ b/adm/shop_admin/configformupdate.php
@@ -146,7 +146,6 @@ $sql = " update {$g5['g5_shop_default_table']}
                 de_hope_date_after            = '{$_POST['de_hope_date_after']}',
                 de_baesong_content            = '{$_POST['de_baesong_content']}',
                 de_change_content             = '{$_POST['de_change_content']}',
-                de_level_sell                 = '{$_POST['de_level_sell']}',
                 de_point_days                 = '{$_POST['de_point_days']}',
                 de_simg_width                 = '{$_POST['de_simg_width']}',
                 de_simg_height                = '{$_POST['de_simg_height']}',

From 01bc89dd04cbb0c555856d1e2b8847b00b0242f7 Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Mon, 20 Jul 2015 10:07:49 +0900
Subject: [PATCH 16/28] =?UTF-8?q?G5=5FLINK=5FCOUNT=200=EC=9C=BC=EB=A1=9C?=
 =?UTF-8?q?=20=EC=84=A4=EC=A0=95=20=EB=95=8C=20=EC=98=A4=EB=A5=98=20?=
 =?UTF-8?q?=EC=88=98=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 mobile/skin/board/basic/view.skin.php   | 4 ++--
 mobile/skin/board/gallery/view.skin.php | 4 ++--
 skin/board/basic/view.skin.php          | 4 ++--
 skin/board/gallery/view.skin.php        | 4 ++--
 4 files changed, 8 insertions(+), 8 deletions(-)

diff --git a/mobile/skin/board/basic/view.skin.php b/mobile/skin/board/basic/view.skin.php
index b1775bd1b..1b8ba0c93 100644
--- a/mobile/skin/board/basic/view.skin.php
+++ b/mobile/skin/board/basic/view.skin.php
@@ -65,8 +65,8 @@ add_stylesheet('<link rel="stylesheet" href="'.$board_skin_url.'/style.css">', 0
     <?php } ?>
 
     <?php
-    if (implode('', $view['link'])) {
-     ?>
+    if ($view['link']) {
+    ?>
     <section id="bo_v_link">
         <h2>관련링크</h2>
         <ul>
diff --git a/mobile/skin/board/gallery/view.skin.php b/mobile/skin/board/gallery/view.skin.php
index 6657cf5be..7b7e369ab 100644
--- a/mobile/skin/board/gallery/view.skin.php
+++ b/mobile/skin/board/gallery/view.skin.php
@@ -65,8 +65,8 @@ add_stylesheet('<link rel="stylesheet" href="'.$board_skin_url.'/style.css">', 0
     <?php } ?>
 
     <?php
-    if (implode('', $view['link'])) {
-     ?>
+    if ($view['link']) {
+    ?>
     <section id="bo_v_link">
         <h2>관련링크</h2>
         <ul>
diff --git a/skin/board/basic/view.skin.php b/skin/board/basic/view.skin.php
index d49275ec5..22efc3c16 100644
--- a/skin/board/basic/view.skin.php
+++ b/skin/board/basic/view.skin.php
@@ -68,8 +68,8 @@ add_stylesheet('<link rel="stylesheet" href="'.$board_skin_url.'/style.css">', 0
     <?php } ?>
 
     <?php
-    if (implode('', $view['link'])) {
-     ?>
+    if ($view['link']) {
+    ?>
      <!-- 관련링크 시작 { -->
     <section id="bo_v_link">
         <h2>관련링크</h2>
diff --git a/skin/board/gallery/view.skin.php b/skin/board/gallery/view.skin.php
index d49275ec5..22efc3c16 100644
--- a/skin/board/gallery/view.skin.php
+++ b/skin/board/gallery/view.skin.php
@@ -68,8 +68,8 @@ add_stylesheet('<link rel="stylesheet" href="'.$board_skin_url.'/style.css">', 0
     <?php } ?>
 
     <?php
-    if (implode('', $view['link'])) {
-     ?>
+    if ($view['link']) {
+    ?>
      <!-- 관련링크 시작 { -->
     <section id="bo_v_link">
         <h2>관련링크</h2>

From 04d8d9b704aaf3ead490d53d1af6bd27611d2b5e Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Mon, 20 Jul 2015 10:27:52 +0900
Subject: [PATCH 17/28] =?UTF-8?q?=EC=9D=B4=EB=A9=94=EC=9D=BC=20=EC=9E=AC?=
 =?UTF-8?q?=EC=9D=B8=EC=A6=9D=20=EC=A0=95=EB=B3=B4=20=EB=A1=9C=EB=93=9C=20?=
 =?UTF-8?q?=EC=BD=94=EB=93=9C=20=EC=9C=84=EC=B9=98=20=EC=88=98=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 bbs/register_email.php | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

diff --git a/bbs/register_email.php b/bbs/register_email.php
index 4345d4eea..4d3e44d79 100644
--- a/bbs/register_email.php
+++ b/bbs/register_email.php
@@ -2,14 +2,15 @@
 include_once('./_common.php');
 include_once(G5_CAPTCHA_PATH.'/captcha.lib.php');
 
+$g5['title'] = '메일인증 메일주소 변경';
+include_once('./_head.php');
+
+$mb_id = substr(clean_xss_tags($_GET['mb_id']), 0, 20);
 $sql = " select mb_email, mb_datetime, mb_email_certify from {$g5['member_table']} where mb_id = '{$mb_id}' ";
 $mb = sql_fetch($sql);
 if (substr($mb['mb_email_certify'],0,1)!=0) {
     alert("이미 메일인증 하신 회원입니다.", G5_URL);
 }
-
-$g5['title'] = '메일인증 메일주소 변경';
-include_once('./_head.php');
 ?>
 
 <p>메일인증을 받지 못한 경우 회원정보의 메일주소를 변경 할 수 있습니다.</p>

From ecd4a337ff101aae1ea21ad47c0215bc79cf869f Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Mon, 20 Jul 2015 10:34:39 +0900
Subject: [PATCH 18/28] =?UTF-8?q?=EC=9D=B4=EB=A9=94=EC=9D=BC=20=EC=9E=AC?=
 =?UTF-8?q?=EC=9D=B8=EC=A6=9D=20=EB=A9=94=EC=9D=BC=20=EB=B0=9C=EC=86=A1=20?=
 =?UTF-8?q?=EC=98=A4=EB=A5=98=20=EC=88=98=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 bbs/register_email_update.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bbs/register_email_update.php b/bbs/register_email_update.php
index 3ae7b006f..36fe66f8f 100644
--- a/bbs/register_email_update.php
+++ b/bbs/register_email_update.php
@@ -8,7 +8,7 @@ $mb_email = trim($_POST['mb_email']);
 
 $sql = " select mb_name, mb_datetime from {$g5['member_table']} where mb_id = '{$mb_id}' and mb_email_certify <> '' ";
 $mb = sql_fetch($sql);
-if (!$mb) {
+if ($mb) {
     alert("이미 메일인증 하신 회원입니다.", G5_URL);
 }
 

From 8da71f60edaac237edc7ef0fbb1f8bdfc73f0103 Mon Sep 17 00:00:00 2001
From: sora90224 <sora90224@naver.com>
Date: Mon, 20 Jul 2015 10:51:12 +0900
Subject: [PATCH 19/28] =?UTF-8?q?=EB=A9=94=EC=9D=BC=EC=9D=B8=EC=A6=9D=20?=
 =?UTF-8?q?=EB=A9=94=EC=9D=BC=EB=B3=80=EA=B2=BD?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 bbs/register_email.php | 6 +++---
 css/default.css        | 6 +++++-
 css/mobile.css         | 8 +++++++-
 3 files changed, 15 insertions(+), 5 deletions(-)

diff --git a/bbs/register_email.php b/bbs/register_email.php
index 4d3e44d79..e7fc92537 100644
--- a/bbs/register_email.php
+++ b/bbs/register_email.php
@@ -13,17 +13,17 @@ if (substr($mb['mb_email_certify'],0,1)!=0) {
 }
 ?>
 
-<p>메일인증을 받지 못한 경우 회원정보의 메일주소를 변경 할 수 있습니다.</p>
+<p class="rg_em_p">메일인증을 받지 못한 경우 회원정보의 메일주소를 변경 할 수 있습니다.</p>
 
 <form method="post" name="fregister_email" action="<?php echo G5_HTTPS_BBS_URL.'/register_email_update.php'; ?>" onsubmit="return fregister_email_submit(this);">
 <input type="hidden" name="mb_id" value="<?php echo $mb_id; ?>">
 
-<div class="tbl_frm01 tbl_frm">
+<div class="tbl_frm01 tbl_frm rg_em">
     <table>
     <caption>사이트 이용정보 입력</caption>
     <tr>
         <th scope="row"><label for="reg_mb_email">E-mail<strong class="sound_only">필수</strong></label></th>
-        <td><input type="text" name="mb_email" id="reg_mb_email" required class="frm_input email required" size="50" maxlength="100" value="<?php echo $mb['mb_email']; ?>"></td>
+        <td><input type="text" name="mb_email" id="reg_mb_email" required class="frm_input email required" size="30" maxlength="100" value="<?php echo $mb['mb_email']; ?>"></td>
     </tr>
     <tr>
         <th scope="row">자동등록방지</th>
diff --git a/css/default.css b/css/default.css
index 9a9e4288c..731c6b84d 100644
--- a/css/default.css
+++ b/css/default.css
@@ -279,4 +279,8 @@ a.btn_admin:focus, a.btn_admin:hover {text-decoration:none}
 .pg_current {display:inline-block;margin:0 4px 0 0;background:#333;color:#fff;font-weight:normal}
 
 /* Mobile화면으로 */
-#device_change {display:block;margin:0.3em;padding:0.5em 0;border:1px solid #eee;border-radius:2em;background:#fff;color:#000;font-size:2em;text-decoration:none;text-align:center}
\ No newline at end of file
+#device_change {display:block;margin:0.3em;padding:0.5em 0;border:1px solid #eee;border-radius:2em;background:#fff;color:#000;font-size:2em;text-decoration:none;text-align:center}
+
+/*메일인증*/
+.rg_em{margin-top:5px}
+.rg_em caption{padding:0;font-size:0;line-height:0;overflow:hidden}
\ No newline at end of file
diff --git a/css/mobile.css b/css/mobile.css
index feb6f507f..6316c221e 100644
--- a/css/mobile.css
+++ b/css/mobile.css
@@ -247,4 +247,10 @@ a.btn_admin:focus, a.btn_admin:hover {text-decoration:none}
 .pg_current {display:inline-block;margin:0 4px 0 0;background:#333;color:#fff;font-weight:normal}
 
 /* PC화면으로 */
-#device_change {display:block;margin:5px;padding:5px 0;border:1px solid #eee;border-radius:2em;color:#000;font-size:1em;text-decoration:none;text-align:center}
\ No newline at end of file
+#device_change {display:block;margin:5px;padding:5px 0;border:1px solid #eee;border-radius:2em;color:#000;font-size:1em;text-decoration:none;text-align:center}
+
+/*메일인증*/
+.rg_em_p{padding:0 5px}
+.rg_em{margin:5px 5px 10px;}
+.rg_em table{width:100%;border-collapse:collapse}
+.rg_em caption{padding:0;font-size:0;line-height:0;overflow:hidden}
\ No newline at end of file

From f79ca0f23225aa43f76367df28f6af071c71df71 Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Mon, 20 Jul 2015 11:47:54 +0900
Subject: [PATCH 20/28] =?UTF-8?q?=EB=B2=84=EC=A0=84=EB=B3=80=EA=B2=BD?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 config.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/config.php b/config.php
index 564f8afd2..70a1da8ab 100644
--- a/config.php
+++ b/config.php
@@ -5,7 +5,7 @@
 ********************/
 
 define('G5_VERSION', '그누보드5');
-define('G5_GNUBOARD_VER', '5.0.40');
+define('G5_GNUBOARD_VER', '5.0.41');
 
 // 이 상수가 정의되지 않으면 각각의 개별 페이지는 별도로 실행될 수 없음
 define('_GNUBOARD_', true);

From f5ad53538780e7f71980f26c54d15355984988a8 Mon Sep 17 00:00:00 2001
From: sungkyuchun <sungkyu.chun@smartandwise.co.kr>
Date: Mon, 20 Jul 2015 16:38:20 +0900
Subject: [PATCH 21/28] empty_mb_name checks mb_id, not mb_name

empty_mb_name is a function checking name from user input form. But it
was not checked by empty_mb_name function. So I fix it.
---
 bbs/register_form_update.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bbs/register_form_update.php b/bbs/register_form_update.php
index 83144fecc..44e5e39ab 100644
--- a/bbs/register_form_update.php
+++ b/bbs/register_form_update.php
@@ -73,7 +73,7 @@ if ($w == '' || $w == 'u') {
     if($w == '' && $mb_password != $mb_password_re)
         alert('비밀번호가 일치하지 않습니다.');
 
-    if ($msg = empty_mb_name($mb_id))       alert($msg, "", true, true);
+    if ($msg = empty_mb_name($mb_name))       alert($msg, "", true, true);
     if ($msg = empty_mb_nick($mb_nick))     alert($msg, "", true, true);
     if ($msg = empty_mb_email($mb_email))   alert($msg, "", true, true);
     if ($msg = reserve_mb_id($mb_id))       alert($msg, "", true, true);

From 2bbe8a8e45c98e958e6bef8ffe76409a86b795a8 Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Thu, 23 Jul 2015 09:21:32 +0900
Subject: [PATCH 22/28] =?UTF-8?q?=EB=AA=A8=EB=B0=94=EC=9D=BC=20=EB=A9=94?=
 =?UTF-8?q?=EC=9D=B8=20=EB=B0=B0=EB=84=88=20slide=20=EC=8A=A4=ED=81=AC?=
 =?UTF-8?q?=EB=A6=BD=ED=8A=B8=20=EC=98=A4=EB=A5=98=20=EC=88=98=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 js/shop.mobile.main.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/js/shop.mobile.main.js b/js/shop.mobile.main.js
index a99ea5031..b02e93d25 100644
--- a/js/shop.mobile.main.js
+++ b/js/shop.mobile.main.js
@@ -121,7 +121,7 @@
         var count = $slides.size();
         var width, outerW;
 
-        if(count < 2)
+        if(count < 1)
             return;
 
         function button_change(idx)

From 4c999721bbaec97694be5b7e2f43110e85518dae Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Fri, 24 Jul 2015 09:53:40 +0900
Subject: [PATCH 23/28] =?UTF-8?q?XSS=20=EC=B7=A8=EC=95=BD=EC=A0=90=20?=
 =?UTF-8?q?=EC=88=98=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 bbs/password.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/bbs/password.php b/bbs/password.php
index b29681143..ffd2a55b4 100644
--- a/bbs/password.php
+++ b/bbs/password.php
@@ -51,7 +51,7 @@ $sql = " select wr_subject from {$write_table}
                       and wr_is_comment = 0 ";
 $row = sql_fetch($sql);
 
-$g5['title'] = $row['wr_subject'];
+$g5['title'] = get_text($row['wr_subject']);
 
 include_once($member_skin_path.'/password.skin.php');
 

From d7e3d03c732849bf9467f95d28a416c0052dc95c Mon Sep 17 00:00:00 2001
From: thisgun <thisgun@naver.com>
Date: Fri, 24 Jul 2015 15:57:29 +0900
Subject: [PATCH 24/28] =?UTF-8?q?sms5=20=EB=A1=9C=EA=B7=B8=20=EA=B8=B0?=
 =?UTF-8?q?=EB=A1=9D=20=ED=95=9C=EA=B8=80=20=EA=B9=A8=EC=A7=90=20=EC=98=A4?=
 =?UTF-8?q?=EB=A5=98=20=EC=88=98=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 adm/sms_admin/history_send.php   | 2 +-
 adm/sms_admin/sms_write_send.php | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/adm/sms_admin/history_send.php b/adm/sms_admin/history_send.php
index a28d981fe..214815a6a 100644
--- a/adm/sms_admin/history_send.php
+++ b/adm/sms_admin/history_send.php
@@ -116,7 +116,7 @@ if ($result)
             $row['bk_hp'] = get_hp($row['bk_hp'], 1);
 
             $log = array_shift($SMS->Log);
-            $log = @iconv('UTF-8', 'UTF-8//IGNORE', $log);
+            $log = @iconv('euc-kr', 'utf-8', $log);
 
             sql_query("insert into {$g5['sms5_history_table']} set wr_no='$wr_no', wr_renum='$new_wr_renum', bg_no='{$row['bg_no']}', mb_id='{$row['mb_id']}', bk_no='{$row['bk_no']}', hs_name='{$row['hs_name']}', hs_hp='{$row['hs_hp']}', hs_datetime='".G5_TIME_YMDHIS."', hs_flag='$hs_flag', hs_code='$hs_code', hs_memo='".addslashes($hs_memo)."', hs_log='".addslashes($log)."'", false);
         }
diff --git a/adm/sms_admin/sms_write_send.php b/adm/sms_admin/sms_write_send.php
index 45646ffec..5bbc285bb 100644
--- a/adm/sms_admin/sms_write_send.php
+++ b/adm/sms_admin/sms_write_send.php
@@ -202,7 +202,7 @@ if ($result)
             $row['bk_hp'] = get_hp($row['bk_hp'], 1);
 
             $log = array_shift($SMS->Log);
-            $log = @iconv('UTF-8', 'UTF-8//IGNORE', $log);
+            $log = @iconv('euc-kr', 'utf-8', $log);
 
             sql_query("insert into {$g5['sms5_history_table']} set wr_no='$wr_no', wr_renum=0, bg_no='{$row['bg_no']}', mb_id='{$row['mb_id']}', bk_no='{$row['bk_no']}', hs_name='".addslashes($row['bk_name'])."', hs_hp='{$row['bk_hp']}', hs_datetime='".G5_TIME_YMDHIS."', hs_flag='$hs_flag', hs_code='$hs_code', hs_memo='".addslashes($hs_memo)."', hs_log='".addslashes($log)."'", false);
         }

From 24120c0d1e82727fc0c98c3922cf5e70ee9038d1 Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Fri, 24 Jul 2015 17:08:41 +0900
Subject: [PATCH 25/28] =?UTF-8?q?gitignore=20=ED=8C=8C=EC=9D=BC=20?=
 =?UTF-8?q?=EC=88=98=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .gitignore | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.gitignore b/.gitignore
index 78e439322..309e1c111 100644
--- a/.gitignore
+++ b/.gitignore
@@ -14,3 +14,4 @@ log/
 g5_tree/
 naver*.html
 initests01/
+SIRsoft000/

From c60430f1a0e7a5d4d168651667949749e808451c Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Mon, 27 Jul 2015 13:55:06 +0900
Subject: [PATCH 26/28] =?UTF-8?q?=EC=9D=B4=EB=8B=88=EC=8B=9C=EC=8A=A4=20?=
 =?UTF-8?q?=EC=8B=A0=EC=9A=A9=EC=B9=B4=EB=93=9C=20=ED=95=A0=EB=B6=80=20?=
 =?UTF-8?q?=ED=8C=8C=EB=9D=BC=EB=AF=B8=ED=84=B0=20=EC=88=98=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 mobile/shop/inicis/orderform.1.php | 1 +
 shop/inicis/encryptdata.php        | 2 +-
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/mobile/shop/inicis/orderform.1.php b/mobile/shop/inicis/orderform.1.php
index bfdaab703..8573e7300 100644
--- a/mobile/shop/inicis/orderform.1.php
+++ b/mobile/shop/inicis/orderform.1.php
@@ -16,6 +16,7 @@ if (!defined("_GNUBOARD_")) exit; // 개별 페이지 접근 불가
 <input type="hidden" name="P_HPP_METHOD" value="2">
 <input type="hidden" name="P_RESERVED"   value="bank_receipt=N&twotrs_isp=Y&block_isp=Y<?php echo $useescrow; ?>">
 <input type="hidden" name="P_NOTI"       value="<?php echo $od_id; ?>">
+<input type="hidden" name="P_QUOTABASE"  value="01:02:03:04:05:06:07:08:09:10:11:12"> <!-- 할부기간 설정 01은 일시불 -->
 
 <input type="hidden" name="good_mny"     value="<?php echo $tot_price; ?>" >
 
diff --git a/shop/inicis/encryptdata.php b/shop/inicis/encryptdata.php
index 4f69a8a2f..d46924982 100644
--- a/shop/inicis/encryptdata.php
+++ b/shop/inicis/encryptdata.php
@@ -26,7 +26,7 @@ $inipay->SetField("checkopt", "false");                      //base64함:false,
 $inipay->SetField("mid",        $default['de_inicis_mid']); // 상점아이디
 $inipay->SetField("price",      $price);                    // 가격
 $inipay->SetField("nointerest", $inipay_nointerest);        // 무이자여부(no:일반, yes:무이자)
-$inipay->SetField("quotabase",  $inipay_quotabase);//할부기간
+$inipay->SetField("quotabase",  iconv_euckr($inipay_quotabase));//할부기간
 
 /********************************
  * 4. 암호화 대상/값을 암호화함 *

From 41a2f6803dd2b4032440e8cce74b75fb523e0d7b Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Mon, 27 Jul 2015 14:04:45 +0900
Subject: [PATCH 27/28] =?UTF-8?q?=EB=B2=84=EC=A0=84=EB=B3=80=EA=B2=BD?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 config.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/config.php b/config.php
index 70a1da8ab..da4877c2c 100644
--- a/config.php
+++ b/config.php
@@ -5,7 +5,7 @@
 ********************/
 
 define('G5_VERSION', '그누보드5');
-define('G5_GNUBOARD_VER', '5.0.41');
+define('G5_GNUBOARD_VER', '5.0.42');
 
 // 이 상수가 정의되지 않으면 각각의 개별 페이지는 별도로 실행될 수 없음
 define('_GNUBOARD_', true);

From 46f505816b345273b1cf35eca80eaec8cd3d3449 Mon Sep 17 00:00:00 2001
From: chicpro <chicpro@sir.co.kr>
Date: Wed, 5 Aug 2015 10:15:37 +0900
Subject: [PATCH 28/28] =?UTF-8?q?kcp=20=EB=AA=A8=EB=B0=94=EC=9D=BC=20?=
 =?UTF-8?q?=EA=B2=B0=EC=A0=9C=20=ED=99=94=EB=A9=B4=20=EC=82=AC=EC=9D=B4?=
 =?UTF-8?q?=EC=A6=88=20=EB=B3=80=EA=B2=BD?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 mobile/shop/kcp/order_approval_form.php | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/mobile/shop/kcp/order_approval_form.php b/mobile/shop/kcp/order_approval_form.php
index 28703de79..e807ae404 100644
--- a/mobile/shop/kcp/order_approval_form.php
+++ b/mobile/shop/kcp/order_approval_form.php
@@ -353,11 +353,11 @@ if($default['de_tax_flag_use']) {
 </div>
 
 <!-- 스마트폰에서 KCP 결제창을 레이어 형태로 구현-->
-<div id="layer_receipt" style="position:absolute; left:1px; top:1px; width:310;height:400; z-index:1; display:none;">
-    <table width="310" border="-" cellspacing="0" cellpadding="0" style="text-align:center">
-        <tr>
+<div id="layer_receipt" style="position:absolute; left:1px; top:1px; width:100%;height:100%; z-index:1; display:none;">
+    <table width="100%" height="100%" border="-" cellspacing="0" cellpadding="0" style="text-align:center">
+        <tr height="100%" width="100%">
             <td>
-                <iframe name="frm_receipt" frameborder="0" border="0" width="310" height="400" scrolling="auto"></iframe>
+                <iframe name="frm_receipt" frameborder="0" border="0" width="100%" height="100%" scrolling="auto"></iframe>
             </td>
         </tr>
     </table>