사용자단 따옴표 작업 bbs/write_update.php 할 차례

bbs/scrap_popin_update.php

@@ -5,25 +5,25 @@ include_once($g4['path'].'/head.sub.php');
 
 if (!$member[mb_id]) 
 {
-    $href = "./login.php?$qstr&url=".urlencode("./board.php?bo_table=$bo_table&wr_id=$wr_id");
-    echo "<script> alert('회원만 접근 가능합니다.'); top.location.href = '$href'; </script>";
+    $href = './login.php?'.$qstr.'&amp;url='.urlencode('./board.php?bo_table='.$bo_table.'&amp;wr_id='.$wr_id);
+    echo '<script> alert(\'회원만 접근 가능합니다.\'); top.location.href = \''.$href.'\'; </script>';
     exit;
 }
 
 $sql = " select count(*) as cnt from $g4[scrap_table]
-          where mb_id = '$member[mb_id]'
+            where mb_id = '$member[mb_id]'
             and bo_table = '$bo_table'
             and wr_id = '$wr_id' ";
 $row = sql_fetch($sql);
 if ($row[cnt]) 
 {
-    echo "
+    echo '
     <script> 
-    if (confirm('이미 스크랩하신 글 입니다..PHP_EOL.PHP_EOL.지금 스크랩을 확인하시겠습니까?'))
-        document.location.href = './scrap.php';
+    if (confirm(\'이미 스크랩하신 글 입니다.'.PHP_EOL.PHP_EOL.'지금 스크랩을 확인하시겠습니까?\'))
+        document.location.href = \'./scrap.php\';
     else
         window.close();
-    </script>";
+    </script>';
     exit;
 }
 
@@ -40,54 +40,54 @@ if ($wr_content && ($member[mb_level] >= $board[bo_comment_level]))
         $wr_email = $member[mb_email];
         $wr_homepage = $member[mb_homepage];
 
-        $sql = " select max(wr_comment) as max_comment from $write_table 
-                  where wr_parent = '$wr_id' and wr_is_comment = 1 ";
+        $sql = " select max(wr_comment) as max_comment from {$write_table}
+                    where wr_parent = '{$wr_id}' and wr_is_comment = 1 ";
         $row = sql_fetch($sql);
         $row[max_comment] += 1;
 
         $sql = " insert into $write_table
-                    set ca_name = '$wr[ca_name]',
-                        wr_option = '',
-                        wr_num = '$wr[wr_num]',
-                        wr_reply = '',
-                        wr_parent = '$wr_id',
-                        wr_is_comment = '1',
-                        wr_comment = '$row[max_comment]',
-                        wr_content = '$wr_content',
-                        mb_id = '$mb_id',
-                        wr_password = '$wr_password',
-                        wr_name = '$wr_name',
-                        wr_email = '$wr_email',
-                        wr_homepage = '$wr_homepage',
-                        wr_datetime = '$g4[time_ymdhis]',
-                        wr_ip = '$_SERVER[REMOTE_ADDR]' ";
+                    set ca_name = '{$wr[ca_name]}',
+                         wr_option = '',
+                         wr_num = '{$wr[wr_num]}',
+                         wr_reply = '',
+                         wr_parent = '{$wr_id}',
+                         wr_is_comment = 1,
+                         wr_comment = '{$row[max_comment]}',
+                         wr_content = '{$wr_content}',
+                         mb_id = '{$mb_id}',
+                         wr_password = '{$wr_password}',
+                         wr_name = '{$wr_name}',
+                         wr_email = '{$wr_email}',
+                         wr_homepage = '{$wr_homepage}',
+                         wr_datetime = '{$g4[time_ymdhis]}',
+                         wr_ip = '{$_SERVER[REMOTE_ADDR]}' ";
         sql_query($sql);
 
         $comment_id = mysql_insert_id();
 
         // 원글에 코멘트수 증가
-        sql_query(" update $write_table set wr_comment = wr_comment + 1 where wr_id = '$wr_id' ");
+        sql_query(" update {$write_table} set wr_comment = wr_comment + 1 where wr_id = '{$wr_id}' ");
 
         // 새글 INSERT
         //sql_query(" insert into $g4[board_new_table] ( bo_table, wr_id, wr_parent, bn_datetime ) values ( '$bo_table', '$comment_id', '$wr_id', '$g4[time_ymdhis]' ) ");
-        sql_query(" insert into $g4[board_new_table] ( bo_table, wr_id, wr_parent, bn_datetime, mb_id ) values ( '$bo_table', '$comment_id', '$wr_id', '$g4[time_ymdhis]', '$member[mb_id]' ) ");
+        sql_query(" insert into {$g4[board_new_table]} ( bo_table, wr_id, wr_parent, bn_datetime, mb_id ) values ( '{$bo_table}', '{$comment_id}', '{$wr_id}', '{$g4[time_ymdhis]}', '{$member[mb_id]}' ) ");
 
         // 코멘트 1 증가
-        sql_query(" update $g4[board_table] set bo_count_comment = bo_count_comment + 1 where bo_table = '$bo_table' ");
+        sql_query(" update {$g4[board_table]}  set bo_count_comment = bo_count_comment + 1 where bo_table = '{$bo_table}' ");
 
         // 포인트 부여
-        insert_point($member[mb_id], $board[bo_comment_point], "$board[bo_subject] {$wr_id}-{$comment_id} 코멘트쓰기", $bo_table, $comment_id, '코멘트');
+        insert_point($member[mb_id], $board[bo_comment_point], '{$board[bo_subject]} {$wr_id}-{$comment_id} 코멘트쓰기', $bo_table, $comment_id, '코멘트');
     }
 }
 
-$sql = " insert into $g4[scrap_table] ( mb_id, bo_table, wr_id, ms_datetime )
-         values ( '$member[mb_id]', '$bo_table', '$wr_id', '$g4[time_ymdhis]' ) ";
+$sql = " insert into {$g4[scrap_table]} ( mb_id, bo_table, wr_id, ms_datetime )
+            values ( '{$member[mb_id]}', '{$bo_table}', '{$wr_id}', '{$g4[time_ymdhis]}' ) ";
 sql_query($sql);
 
 echo <<<HEREDOC
 <script>
-    if (confirm("이 글을 스크랩 하였습니다..PHP_EOL.PHP_EOL.지금 스크랩을 확인하시겠습니까?")) 
-        document.location.href = "./scrap.php";
+    if (confirm('이 글을 스크랩 하였습니다.'.PHP_EOL.PHP_EOL.'지금 스크랩을 확인하시겠습니까?')) 
+        document.location.href = './scrap.php';
     else
         window.close();
 </script>