From 0609936507869879a78355404798eeca95dd823f Mon Sep 17 00:00:00 2001 From: gnuboard Date: Wed, 9 Jan 2013 11:42:33 +0900 Subject: [PATCH 01/13] =?UTF-8?q?=EC=84=B8=EC=85=98=ED=8C=8C=EC=9D=BC=20?= =?UTF-8?q?=EC=9D=BC=EA=B4=84=EC=82=AD=EC=A0=9C=20=EC=B6=94=EA=B0=80?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- adm/session_delete.php | 46 ++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 46 insertions(+) create mode 100644 adm/session_delete.php diff --git a/adm/session_delete.php b/adm/session_delete.php new file mode 100644 index 000000000..f3409c0bf --- /dev/null +++ b/adm/session_delete.php @@ -0,0 +1,46 @@ +
"; +echo ""; +include_once("./admin.tail.php"); +flush(); + +$session_path = "$g4[path]/data/session"; // 세션이저장된 디렉토리 +if (!$dir=@opendir($session_path)) { + echo "세션 디렉토리를 열지못했습니다."; +} + +$cnt=0; +while($file=readdir($dir)) { + + if (!strstr($file,'sess_')) { + continue; + } + + if (strpos($file,'sess_')!=0) { + continue; + } + + if (!$atime=@fileatime("$session_path/$file")) { + continue; + } + if (time() > $atime + (3600 * 6)) { // 지난시간을 초로 계산해서 적어주시면 됩니다. default : 6시간전 + $cnt++; + $return = unlink("$session_path/$file"); + echo "\n"; + + flush(); + + if ($cnt%10==0) + echo "\n"; + } +} +echo "\n"; +?> \ No newline at end of file From 6d575f6ca6c690d24c391e9e31954c52197db21b Mon Sep 17 00:00:00 2001 From: gnuboard Date: Wed, 9 Jan 2013 11:48:04 +0900 Subject: [PATCH 02/13] =?UTF-8?q?=EC=BD=94=EB=93=9C=20=EC=A0=95=EB=A6=AC?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- tail.sub.php | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/tail.sub.php b/tail.sub.php index 94b65bcf9..1ceae9051 100644 --- a/tail.sub.php +++ b/tail.sub.php @@ -11,8 +11,7 @@ $tmp_sql = " select count(*) as cnt from {$g4['login_table']} where lo_ip = '{$_ $tmp_row = sql_fetch($tmp_sql); //sql_query(" lock table $g4['login_table'] write ", false); -if ($tmp_row['cnt']) -{ +if ($tmp_row['cnt']) { $tmp_sql = " update {$g4['login_table']} set mb_id = '{$member['mb_id']}', lo_datetime = '{$g4['time_ymdhis']}', lo_location = '$lo_location', lo_url = '$lo_url' where lo_ip = '{$_SERVER['REMOTE_ADDR']}' "; sql_query($tmp_sql, FALSE); } else { From 17c4ee4dff7d7641e0ad9f650a83c7aa5e03f5cf Mon Sep 17 00:00:00 2001 From: gnuboard Date: Wed, 9 Jan 2013 11:48:30 +0900 Subject: [PATCH 03/13] =?UTF-8?q?tail.sub.php=20=EC=97=90=EC=84=9C=20?= =?UTF-8?q?=EC=82=AC=EC=9A=A9=ED=95=98=EB=8A=94=20global=20=EB=B3=80?= =?UTF-8?q?=EC=88=98=20=EC=B6=94=EA=B0=80?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- bbs/alert.php | 3 +++ 1 file changed, 3 insertions(+) diff --git a/bbs/alert.php b/bbs/alert.php index 63b57c977..55337201f 100644 --- a/bbs/alert.php +++ b/bbs/alert.php @@ -1,4 +1,7 @@ Date: Wed, 9 Jan 2013 11:49:57 +0900 Subject: [PATCH 04/13] =?UTF-8?q?=EC=84=B8=EC=85=98=ED=8C=8C=EC=9D=BC=20?= =?UTF-8?q?=EC=9D=BC=EA=B4=84=EC=82=AD=EC=A0=9C,=20=EC=BA=90=EC=8B=9C?= =?UTF-8?q?=ED=8C=8C=EC=9D=BC=20=EC=9D=BC=EA=B4=84=EC=82=AD=EC=A0=9C=20?= =?UTF-8?q?=EB=A9=94=EB=89=B4=20=EC=B6=94=EA=B0=80,=20phpMyAdmin=20?= =?UTF-8?q?=EB=A9=94=EB=89=B4=20=EC=82=AD=EC=A0=9C?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- adm/admin.menu100.php | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/adm/admin.menu100.php b/adm/admin.menu100.php index 7cb54ef58..e019d7c13 100644 --- a/adm/admin.menu100.php +++ b/adm/admin.menu100.php @@ -8,8 +8,8 @@ $menu['menu100'] = array ( array('100500', 'phpinfo()', ''.$g4['admin_path'].'/phpinfo.php', 'cf_phpinfo'), //array('100600', '업그레이드', ''.$g4['admin_path'].'/upgrade.php', 'cf_upgrade'), //array('100700', '복구/최적화', ''.$g4['admin_path'].'/repair.php', 'cf_repair'), - //array('100800', '세션 삭제', ''.$g4['admin_path'].'/session_delete.php', 'cf_delete'), - array('100900','캐쉬삭제','#', 'cf_cache'), - array('', 'phpMyAdmin', ''.$g4['path'].'/'.$g4['phpmyadmin_dir'].'', 'cf_phpmyadmin') + array('100800', '세션파일 일괄삭제', ''.$g4['admin_path'].'/session_delete.php', 'cf_delete'), + array('100900','캐쉬파일 일괄삭제','#', 'cf_cache'), + //array('', 'phpMyAdmin', ''.$g4['path'].'/'.$g4['phpmyadmin_dir'].'', 'cf_phpmyadmin') ); ?> \ No newline at end of file From 9336c41751c10a9b87a57c4d2edc419857133daf Mon Sep 17 00:00:00 2001 From: gnuboard Date: Wed, 9 Jan 2013 11:50:18 +0900 Subject: [PATCH 05/13] =?UTF-8?q?=EB=A9=94=EC=84=B8=EC=A7=80=20=EC=88=98?= =?UTF-8?q?=EC=A0=95?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- adm/config_form.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/adm/config_form.php b/adm/config_form.php index a80076f25..a811ca094 100644 --- a/adm/config_form.php +++ b/adm/config_form.php @@ -401,7 +401,7 @@ include_once ('./admin.head.php'); - + From 3170cef55267587b489f5107fd34c07bef044bda Mon Sep 17 00:00:00 2001 From: gnuboard Date: Wed, 9 Jan 2013 11:50:37 +0900 Subject: [PATCH 06/13] =?UTF-8?q?=EB=A9=94=EC=84=B8=EC=A7=80=20=EC=88=98?= =?UTF-8?q?=EC=A0=95?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- adm/sendmail_test.php | 22 +++++++++++----------- 1 file changed, 11 insertions(+), 11 deletions(-) diff --git a/adm/sendmail_test.php b/adm/sendmail_test.php index a13b280fd..2ff248494 100644 --- a/adm/sendmail_test.php +++ b/adm/sendmail_test.php @@ -13,27 +13,27 @@ $g4['title'] = '메일 테스트'; include_once('./admin.head.php'); if (isset($_POST['mail'])) { - check_token(); - $from_name = '메일검사'; - $from_email = 'mail@mail'; + $from_email = $config['cf_email_admin']; $email = explode(',', $mail); for ($i=0; $i[메일검사] 내용

이 내용이 제대로 보인다면 보내는 메일 서버에는 이상이 없는것입니다.

'.date("Y-m-d H:i:s").'

이 메일 주소로는 회신되지 않습니다.', 1); -?> - -"; + echo "결과메세지
"; + echo "----------------------------------------------------------------------------------------
"; + echo "다음의 메일 주소로 메일을 발송 하였습니다. ($mail)
"; + echo "해당 주소로 메일이 왔는지 확인하여 주십시오.
"; + echo "만약, 메일이 오지 않는다면 여러곳의 메일 주소로 메일을 보내 보십시오.
"; + echo "그래도 메일이 하나도 도착하지 않는다면 메일 서버(sendmail server)의 오류일 가능성이 높습니다.
"; + echo "이런 경우에는 웹 서버관리자에게 문의하여 주십시오.
"; + echo "----------------------------------------------------------------------------------------"; + echo "

"; } - -$token = get_token(); ?>
-

고객님들께서 메일이 오지 않는다고 하면 사용하는 메뉴입니다.
From 6271dff71babe77326370e881a24d5c06a005cfb Mon Sep 17 00:00:00 2001 From: gnuboard Date: Wed, 9 Jan 2013 11:50:57 +0900 Subject: [PATCH 07/13] =?UTF-8?q?notice=20=EC=98=A4=EB=A5=98=20=ED=95=B4?= =?UTF-8?q?=EA=B2=B0?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- adm/session_delete.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/adm/session_delete.php b/adm/session_delete.php index f3409c0bf..3032f565f 100644 --- a/adm/session_delete.php +++ b/adm/session_delete.php @@ -5,7 +5,7 @@ include_once("./_common.php"); if ($is_admin != "super") alert("최고관리자만 접근 가능합니다.", $g4[path]); -$g4[title] = "세션파일 일괄삭제"; +$g4['title'] = "세션파일 일괄삭제"; include_once("./admin.head.php"); echo "'완료' 메세지가 나오기 전에 프로그램의 실행을 중지하지 마십시오.

"; echo ""; From 6d4f2354948aa23321e002137231c485e128ad7d Mon Sep 17 00:00:00 2001 From: gnuboard Date: Wed, 9 Jan 2013 13:03:42 +0900 Subject: [PATCH 08/13] =?UTF-8?q?=EB=B3=B4=EB=82=B4=EB=8A=94=20=EB=A9=94?= =?UTF-8?q?=EC=9D=BC=EC=A3=BC=EC=86=8C=EB=A5=BC=20=EC=84=A4=EC=A0=95?= =?UTF-8?q?=EB=90=9C=20=EA=B4=80=EB=A6=AC=EC=9E=90=EB=A9=94=EC=9D=BC?= =?UTF-8?q?=EB=A1=9C=20=EB=8C=80=EC=B2=B4?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- adm/mail_select_update.php | 10 +--------- 1 file changed, 1 insertion(+), 9 deletions(-) diff --git a/adm/mail_select_update.php b/adm/mail_select_update.php index 188983c84..9b20f64d3 100644 --- a/adm/mail_select_update.php +++ b/adm/mail_select_update.php @@ -66,15 +66,7 @@ for ($i=0; $i

▶ 더 이상 정보 수신을 원치 않으시면 [수신거부] 해 주십시오.

"; - /* - ob_start(); - include "$mail_skin/mail.skin.php"; - $content = ob_get_contents(); - ob_end_clean(); - */ - - //mailer($default['de_subject'], $default['de_admin_email'], $email, $subject, $content, 1); - mailer($config['cf_title'], $member['mb_email'], $email, $subject, $content, 1); + mailer($config['cf_title'], $config['cf_email_admin'], $email, $subject, $content, 1); echo "\n"; //echo "+"; From 2a57d61268a4348dcb4c9e26dc6cc459f3aa6b2d Mon Sep 17 00:00:00 2001 From: gnuboard Date: Wed, 9 Jan 2013 15:41:06 +0900 Subject: [PATCH 09/13] =?UTF-8?q?cheditor=20=EC=A0=81=EC=9A=A9,=20?= =?UTF-8?q?=EC=83=81.=ED=95=98=EB=8B=A8=EC=9D=B4=EB=AF=B8=EC=A7=80=20?= =?UTF-8?q?=EC=97=85=EB=A1=9C=EB=93=9C=20=EA=B8=B0=EB=8A=A5=20=EC=A0=9C?= =?UTF-8?q?=EA=B1=B0?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- adm/board_form.php | 96 ++++-------- adm/board_form_update.php | 320 +++++++++++++++++--------------------- 2 files changed, 173 insertions(+), 243 deletions(-) diff --git a/adm/board_form.php b/adm/board_form.php index 2591cbec6..b34d22937 100644 --- a/adm/board_form.php +++ b/adm/board_form.php @@ -1,12 +1,11 @@ lib)) include_once($editor->lib); auth_check($auth[$sub_menu], 'w'); -$token = get_token(); - function b_draw($pos, $color='red') { return "border-{$pos}-width:1px; border-{$pos}-color:{$color}; border-{$pos}-style:solid; "; } @@ -17,24 +16,19 @@ if (!$row['cnt']) alert('게시판그룹이 한개 이상 생성되어야 합니다.', './boardgroup_form.php'); $html_title = '게시판'; + if ($w == '') { + $html_title .= ' 생성'; $bo_table_attr = 'class="required alnum_"'; $board['bo_count_delete'] = 1; $board['bo_count_modify'] = 1; -<<<<<<< HEAD - $board['bo_read_point'] = $config[cf_read_point]; - $board['bo_write_point'] = $config[cf_write_point]; - $board['bo_comment_point'] = $config[cf_comment_point]; - $board['bo_download_point'] = $config[cf_download_point]; -======= $board['bo_read_point'] = $config['cf_read_point']; $board['bo_write_point'] = $config['cf_write_point']; $board['bo_comment_point'] = $config['cf_comment_point']; $board['bo_download_point'] = $config['cf_download_point']; ->>>>>>> 2b5c471bdb62542fc9cb8b6740a934c34e5de04b $board['bo_gallery_cols'] = 4; $board['bo_table_width'] = 97; @@ -49,9 +43,10 @@ if ($w == '') { $board['bo_use_search'] = 1; $board['bo_skin'] = 'basic'; $board['gr_id'] = $gr_id; - $board['bo_disable_tags'] = 'script|iframe'; $board['bo_use_secret'] = 0; + } else if ($w == 'u') { + $html_title .= ' 수정'; if (!$board['bo_table']) @@ -63,6 +58,7 @@ if ($w == '') { } $bo_table_attr = 'readonly'; + } if ($is_admin != 'super') { @@ -74,10 +70,6 @@ $g4['title'] = $html_title; include_once ('./admin.head.php'); ?> - - - -
  • 기본 설정
  • 권한 설정
    • @@ -94,7 +86,6 @@ include_once ('./admin.head.php'); - @@ -545,26 +536,6 @@ if (!preg_match("/([m|M])$/", $upload_max_filesize)) { - - - - - - - -
    게시판 기본 설정
    - - '.$board['bo_image_head'].' '; - ?> -
    - - '.$board['bo_image_tail'].' 삭제'; - ?> -
    @@ -588,7 +559,7 @@ if (!preg_match("/([m|M])$/", $upload_max_filesize)) {
    - + @@ -598,7 +569,7 @@ if (!preg_match("/([m|M])$/", $upload_max_filesize)) {
    - + @@ -739,15 +710,6 @@ if (!preg_match("/([m|M])$/", $upload_max_filesize)) {
    - - - -사용금지 태그 - - script|iframe) HTML 사용시 금지할 태그를 입력하는곳 입니다.')?> - - - @@ -856,26 +818,29 @@ function set_point(f) { } } -function fboardform_submit(f) { - var tmp_title; - var tmp_image; - - tmp_title = "상단"; - tmp_image = f.bo_image_head; - if (tmp_image.value) { - if (!tmp_image.value.toLowerCase().match(/.(gif|jpg|png)$/i)) { - alert(tmp_title + "이미지가 gif, jpg, png 파일이 아닙니다."); - return false; +function chk_bo_image(fld) +{ + if (fld.value) { + if (!fld.value.toLowerCase().match(/.(gif|jpg|png)$/i)) { + return "이미지가 gif, jpg, png 파일이 아닙니다."; } } + return ""; +} - tmp_title = "하단"; - tmp_image = f.bo_image_tail; - if (tmp_image.value) { - if (!tmp_image.value.toLowerCase().match(/.(gif|jpg|png)$/i)) { - alert(tmp_title + "이미지가 gif, jpg, png 파일이 아닙니다."); - return false; - } +function fboardform_submit(f) +{ + + + + if (msg = chk_bo_image(f.bo_image_head)) { + alert("상단 "+msg); + return false; + } + + if (msg = chk_bo_image(f.bo_image_tail)) { + alert("하단 "+msg); + return false; } if (parseInt(f.bo_count_modify.value) < 1) { @@ -890,9 +855,6 @@ function fboardform_submit(f) { return false; } - - - f.action = './board_form_update.php'; return true; } diff --git a/adm/board_form_update.php b/adm/board_form_update.php index 50b81fddc..877351e4f 100644 --- a/adm/board_form_update.php +++ b/adm/board_form_update.php @@ -16,32 +16,18 @@ if (!$bo_table) { alert('게시판 TABLE명은 반드시 입력하세요.'); } if (!preg_match("/^([A-Za-z0-9_]{1,20})$/", $bo_table)) { alert('게시판 TABLE명은 공백없이 영문자, 숫자, _ 만 사용 가능합니다. (20자 이내)'); } if (!$_POST['bo_subject']) { alert('게시판 제목을 입력하세요.'); } -if ($img = $_FILES['bo_image_head']['name']) { - if (!preg_match("/\.(gif|jpg|png)$/i", $img)) { - alert('상단 이미지가 gif, jpg, png 파일이 아닙니다.'); - } -} - -if ($img = $_FILES['bo_image_tail']['name']) { - if (!preg_match("/\.(gif|jpg|png)$/i", $img)) { - alert('하단 이미지가 gif, jpg, png 파일이 아닙니다.'); - } -} - if ($file = $_POST['bo_include_head']) { - if (!preg_match("/\.(php|htm[l]?)$/i", $file)) { + if (!preg_match("/\.(php|htm['l']?)$/i", $file)) { alert('상단 파일 경로가 php, html 파일이 아닙니다.'); } } if ($file = $_POST['bo_include_tail']) { - if (!preg_match("/\.(php|htm[l]?)$/i", $file)) { + if (!preg_match("/\.(php|htm['l']?)$/i", $file)) { alert('하단 파일 경로가 php, html 파일이 아닙니다.'); } } -check_token(); - $board_path = $g4['path'].'/data/file/'.$bo_table; // 게시판 디렉토리 생성 @@ -61,106 +47,86 @@ $dst_char = array('&', '〓'); $bo_category_list = str_replace($src_char, $dst_char, $bo_category_list); $sql_common = " gr_id = '{$_POST['gr_id']}', - bo_subject = '{$_POST['bo_subject']}', - bo_admin = '{$_POST['bo_admin']}', - bo_list_level = '{$_POST[bo_list_level]}', - bo_read_level = '{$_POST[bo_read_level]}', - bo_write_level = '{$_POST[bo_write_level]}', - bo_reply_level = '{$_POST[bo_reply_level]}', - bo_comment_level = '{$_POST[bo_comment_level]}', - bo_html_level = '{$_POST[bo_html_level]}', - bo_link_level = '{$_POST[bo_link_level]}', - bo_count_modify = '{$_POST[bo_count_modify]}', - bo_count_delete = '{$_POST[bo_count_delete]}', - bo_upload_level = '{$_POST[bo_upload_level]}', - bo_download_level = '{$_POST[bo_download_level]}', - bo_read_point = '{$_POST[bo_read_point]}', - bo_write_point = '{$_POST[bo_write_point]}', - bo_comment_point = '{$_POST[bo_comment_point]}', - bo_download_point = '{$_POST[bo_download_point]}', - bo_use_category = '{$_POST[bo_use_category]}', - bo_category_list = '{$_POST['bo_category_list']}', - bo_disable_tags = '{$_POST['bo_disable_tags']}', - bo_use_sideview = '{$_POST[bo_use_sideview]}', - bo_use_file_content = '{$_POST[bo_use_file_content]}', - bo_use_secret = '{$_POST[bo_use_secret]}', - bo_use_dhtml_editor = '{$_POST[bo_use_dhtml_editor]}', - bo_use_rss_view = '{$_POST[bo_use_rss_view]}', - bo_use_good = '{$_POST[bo_use_good]}', - bo_use_nogood = '{$_POST[bo_use_nogood]}', - bo_use_name = '{$_POST[bo_use_name]}', - bo_use_signature = '{$_POST[bo_use_signature]}', - bo_use_ip_view = '{$_POST[bo_use_ip_view]}', - bo_use_list_view = '{$_POST[bo_use_list_view]}', - bo_use_list_content = '{$_POST[bo_use_list_content]}', - bo_use_email = '{$_POST[bo_use_email]}', - bo_table_width = '{$_POST[bo_table_width]}', - bo_subject_len = '{$_POST[bo_subject_len]}', - bo_page_rows = '{$_POST[bo_page_rows]}', - bo_new = '{$_POST[bo_new]}', - bo_hot = '{$_POST[bo_hot]}', - bo_image_width = '{$_POST[bo_image_width]}', - bo_skin = '{$_POST['bo_skin']}', - bo_include_head = '{$_POST['bo_include_head']}', - bo_include_tail = '{$_POST['bo_include_tail']}', - bo_content_head = '{$_POST['bo_content_head']}', - bo_content_tail = '{$_POST['bo_content_tail']}', - bo_insert_content = '{$_POST['bo_insert_content']}', - bo_gallery_cols = '{$_POST[bo_gallery_cols]}', - bo_upload_count = '{$_POST[bo_upload_count]}', - bo_upload_size = '{$_POST[bo_upload_size]}', - bo_reply_order = '{$_POST[bo_reply_order]}', - bo_use_search = '{$_POST[bo_use_search]}', - bo_order_search = '{$_POST[bo_order_search]}', - bo_write_min = '{$_POST[bo_write_min]}', - bo_write_max = '{$_POST[bo_write_max]}', - bo_comment_min = '{$_POST[bo_comment_min]}', - bo_comment_max = '{$_POST[bo_comment_max]}', - bo_sort_field = '{$_POST['bo_sort_field']}', - bo_1_subj = '{$_POST['bo_1_subj']}', - bo_2_subj = '{$_POST['bo_2_subj']}', - bo_3_subj = '{$_POST['bo_3_subj']}', - bo_4_subj = '{$_POST['bo_4_subj']}', - bo_5_subj = '{$_POST['bo_5_subj']}', - bo_6_subj = '{$_POST['bo_6_subj']}', - bo_7_subj = '{$_POST['bo_7_subj']}', - bo_8_subj = '{$_POST['bo_8_subj']}', - bo_9_subj = '{$_POST['bo_9_subj']}', - bo_10_subj = '{$_POST['bo_10_subj']}', - bo_1 = '{$_POST['bo_1']}', - bo_2 = '{$_POST['bo_2']}', - bo_3 = '{$_POST['bo_3']}', - bo_4 = '{$_POST['bo_4']}', - bo_5 = '{$_POST['bo_5']}', - bo_6 = '{$_POST['bo_6']}', - bo_7 = '{$_POST['bo_7']}', - bo_8 = '{$_POST['bo_8']}', - bo_9 = '{$_POST['bo_9']}', - bo_10 = '{$_POST['bo_10']}' "; + bo_subject = '{$_POST['bo_subject']}', + bo_admin = '{$_POST['bo_admin']}', + bo_list_level = '{$_POST['bo_list_level']}', + bo_read_level = '{$_POST['bo_read_level']}', + bo_write_level = '{$_POST['bo_write_level']}', + bo_reply_level = '{$_POST['bo_reply_level']}', + bo_comment_level = '{$_POST['bo_comment_level']}', + bo_html_level = '{$_POST['bo_html_level']}', + bo_link_level = '{$_POST['bo_link_level']}', + bo_count_modify = '{$_POST['bo_count_modify']}', + bo_count_delete = '{$_POST['bo_count_delete']}', + bo_upload_level = '{$_POST['bo_upload_level']}', + bo_download_level = '{$_POST['bo_download_level']}', + bo_read_point = '{$_POST['bo_read_point']}', + bo_write_point = '{$_POST['bo_write_point']}', + bo_comment_point = '{$_POST['bo_comment_point']}', + bo_download_point = '{$_POST['bo_download_point']}', + bo_use_category = '{$_POST['bo_use_category']}', + bo_category_list = '{$_POST['bo_category_list']}', + bo_use_sideview = '{$_POST['bo_use_sideview']}', + bo_use_file_content = '{$_POST['bo_use_file_content']}', + bo_use_secret = '{$_POST['bo_use_secret']}', + bo_use_dhtml_editor = '{$_POST['bo_use_dhtml_editor']}', + bo_use_rss_view = '{$_POST['bo_use_rss_view']}', + bo_use_good = '{$_POST['bo_use_good']}', + bo_use_nogood = '{$_POST['bo_use_nogood']}', + bo_use_name = '{$_POST['bo_use_name']}', + bo_use_signature = '{$_POST['bo_use_signature']}', + bo_use_ip_view = '{$_POST['bo_use_ip_view']}', + bo_use_list_view = '{$_POST['bo_use_list_view']}', + bo_use_list_content = '{$_POST['bo_use_list_content']}', + bo_table_width = '{$_POST['bo_table_width']}', + bo_subject_len = '{$_POST['bo_subject_len']}', + bo_page_rows = '{$_POST['bo_page_rows']}', + bo_new = '{$_POST['bo_new']}', + bo_hot = '{$_POST['bo_hot']}', + bo_image_width = '{$_POST['bo_image_width']}', + bo_skin = '{$_POST['bo_skin']}', + bo_include_head = '{$_POST['bo_include_head']}', + bo_include_tail = '{$_POST['bo_include_tail']}', + bo_content_head = '{$_POST['bo_content_head']}', + bo_content_tail = '{$_POST['bo_content_tail']}', + bo_insert_content = '{$_POST['bo_insert_content']}', + bo_gallery_cols = '{$_POST['bo_gallery_cols']}', + bo_upload_count = '{$_POST['bo_upload_count']}', + bo_upload_size = '{$_POST['bo_upload_size']}', + bo_reply_order = '{$_POST['bo_reply_order']}', + bo_use_search = '{$_POST['bo_use_search']}', + bo_order_search = '{$_POST['bo_order_search']}', + bo_write_min = '{$_POST['bo_write_min']}', + bo_write_max = '{$_POST['bo_write_max']}', + bo_comment_min = '{$_POST['bo_comment_min']}', + bo_comment_max = '{$_POST['bo_comment_max']}', + bo_sort_field = '{$_POST['bo_sort_field']}', + bo_1_subj = '{$_POST['bo_1_subj']}', + bo_2_subj = '{$_POST['bo_2_subj']}', + bo_3_subj = '{$_POST['bo_3_subj']}', + bo_4_subj = '{$_POST['bo_4_subj']}', + bo_5_subj = '{$_POST['bo_5_subj']}', + bo_6_subj = '{$_POST['bo_6_subj']}', + bo_7_subj = '{$_POST['bo_7_subj']}', + bo_8_subj = '{$_POST['bo_8_subj']}', + bo_9_subj = '{$_POST['bo_9_subj']}', + bo_10_subj = '{$_POST['bo_10_subj']}', + bo_1 = '{$_POST['bo_1']}', + bo_2 = '{$_POST['bo_2']}', + bo_3 = '{$_POST['bo_3']}', + bo_4 = '{$_POST['bo_4']}', + bo_5 = '{$_POST['bo_5']}', + bo_6 = '{$_POST['bo_6']}', + bo_7 = '{$_POST['bo_7']}', + bo_8 = '{$_POST['bo_8']}', + bo_9 = '{$_POST['bo_9']}', + bo_10 = '{$_POST['bo_10']}' "; -if ($bo_image_head_del) { - @unlink($board_path.'/'.$bo_image_head_del); - $sql_common .= " , bo_image_head = '' "; -} - -if ($bo_image_tail_del) { - @unlink($board_path.'/'.$bo_image_tail_del); - $sql_common .= " , bo_image_tail = '' "; -} - -if ($_FILES['bo_image_head']['name']) { - //$bo_image_head_urlencode = urlencode($_FILES['bo_image_head']['name']); - $bo_image_head_urlencode = $bo_table.'_head_'.time(); - $sql_common .= " , bo_image_head = '{$bo_image_head_urlencode}' "; -} - -if ($_FILES['bo_image_tail']['name']) { - //$bo_image_tail_urlencode = urlencode($_FILES['bo_image_tail']['name']); - $bo_image_tail_urlencode = $bo_table.'_tail_'.time(); - $sql_common .= " , bo_image_tail = '{$bo_image_tail_urlencode}' "; -} +if (isset($_POST['bo_use_email'])) + $sql_common .= ", bo_use_email = '{$_POST['bo_use_email']}'"; if ($w == '') { + $row = sql_fetch(" select count(*) as cnt from {$g4['board_table']} where bo_table = '{$bo_table}' "); if ($row['cnt']) alert($bo_table.' 은(는) 이미 존재하는 TABLE 입니다.'); @@ -183,7 +149,9 @@ if ($w == '') { $target = array($create_table, ''); $sql = preg_replace($source, $target, $sql); sql_query($sql, FALSE); + } else if ($w == 'u') { + // 게시판의 글 수 $sql = " select count(*) as cnt from {$g4['write_prefix']}{$bo_table} where wr_is_comment = 0 "; $row = sql_fetch($sql); @@ -195,7 +163,7 @@ if ($w == '') { $bo_count_comment = $row['cnt']; // 글수 조정 - if ($proc_count) { + if (isset($_POST['proc_count'])) { // 원글을 얻습니다. $sql = " select wr_id from {$g4['write_prefix']}{$bo_table} where wr_is_comment = 0 "; $result = sql_query($sql); @@ -231,79 +199,79 @@ if ($w == '') { {$sql_common} where bo_table = '{$bo_table}' "; sql_query($sql); + } // 같은 그룹내 게시판 동일 옵션 적용 -$s = ""; -if ($chk_admin) $s .= " , bo_admin = '{$bo_admin}' "; -if ($chk_list_level) $s .= " , bo_list_level = '{$bo_list_level}' "; -if ($chk_read_level) $s .= " , bo_read_level = '{$bo_read_level}' "; -if ($chk_write_level) $s .= " , bo_write_level = '{$bo_write_level}' "; -if ($chk_reply_level) $s .= " , bo_reply_level = '{$bo_reply_level}' "; -if ($chk_comment_level) $s .= " , bo_comment_level = '{$bo_comment_level}' "; -if ($chk_link_level) $s .= " , bo_link_level = '{$bo_link_level}' "; -if ($chk_upload_level) $s .= " , bo_upload_level = '{$bo_upload_level}' "; -if ($chk_download_level) $s .= " , bo_download_level = '{$bo_download_level}' "; -if ($chk_html_level) $s .= " , bo_html_level = '{$bo_html_level}' "; -if ($chk_count_modify) $s .= " , bo_count_modify = '{$bo_count_modify}' "; -if ($chk_count_delete) $s .= " , bo_count_delete = '{$bo_count_delete}' "; -if ($chk_read_point) $s .= " , bo_read_point = '{$bo_read_point}' "; -if ($chk_write_point) $s .= " , bo_write_point = '{$bo_write_point}' "; -if ($chk_comment_point) $s .= " , bo_comment_point = '{$bo_comment_point}' "; -if ($chk_download_point) $s .= " , bo_download_point = '{$bo_download_point}' "; -if ($chk_category_list) { - $s .= " , bo_category_list = '{$bo_category_list}' "; - $s .= " , bo_use_category = '{$bo_use_category}' "; +$fields = ""; +if (is_checked('chk_admin')) $fields .= " , bo_admin = '{$bo_admin}' "; +if (is_checked('chk_list_level')) $fields .= " , bo_list_level = '{$bo_list_level}' "; +if (is_checked('chk_read_level')) $fields .= " , bo_read_level = '{$bo_read_level}' "; +if (is_checked('chk_write_level')) $fields .= " , bo_write_level = '{$bo_write_level}' "; +if (is_checked('chk_reply_level')) $fields .= " , bo_reply_level = '{$bo_reply_level}' "; +if (is_checked('chk_comment_level')) $fields .= " , bo_comment_level = '{$bo_comment_level}' "; +if (is_checked('chk_link_level')) $fields .= " , bo_link_level = '{$bo_link_level}' "; +if (is_checked('chk_upload_level')) $fields .= " , bo_upload_level = '{$bo_upload_level}' "; +if (is_checked('chk_download_level')) $fields .= " , bo_download_level = '{$bo_download_level}' "; +if (is_checked('chk_html_level')) $fields .= " , bo_html_level = '{$bo_html_level}' "; +if (is_checked('chk_count_modify')) $fields .= " , bo_count_modify = '{$bo_count_modify}' "; +if (is_checked('chk_count_delete')) $fields .= " , bo_count_delete = '{$bo_count_delete}' "; +if (is_checked('chk_read_point')) $fields .= " , bo_read_point = '{$bo_read_point}' "; +if (is_checked('chk_write_point')) $fields .= " , bo_write_point = '{$bo_write_point}' "; +if (is_checked('chk_comment_point')) $fields .= " , bo_comment_point = '{$bo_comment_point}' "; +if (is_checked('chk_download_point')) $fields .= " , bo_download_point = '{$bo_download_point}' "; +if (is_checked('chk_category_list')) { + $fields .= " , bo_category_list = '{$bo_category_list}' "; + $fields .= " , bo_use_category = '{$bo_use_category}' "; } -if ($chk_use_sideview) $s .= " , bo_use_sideview = '{$bo_use_sideview}' "; -if ($chk_use_file_content) $s .= " , bo_use_file_content = '{$bo_use_file_content}' "; -if ($chk_use_secret) $s .= " , bo_use_secret = '{$bo_use_secret}' "; -if ($chk_use_dhtml_editor) $s .= " , bo_use_dhtml_editor = '{$bo_use_dhtml_editor}' "; -if ($chk_use_rss_view) $s .= " , bo_use_rss_view = '{$bo_use_rss_view}' "; -if ($chk_use_good) $s .= " , bo_use_good = '{$bo_use_good}' "; -if ($chk_use_nogood) $s .= " , bo_use_nogood = '{$bo_use_nogood}' "; -if ($chk_use_name) $s .= " , bo_use_name = '{$bo_use_name}' "; -if ($chk_use_signature) $s .= " , bo_use_signature = '{$bo_use_signature}' "; -if ($chk_use_ip_view) $s .= " , bo_use_ip_view = '{$bo_use_ip_view}' "; -if ($chk_use_list_view) $s .= " , bo_use_list_view = '{$bo_use_list_view}' "; -if ($chk_use_list_content) $s .= " , bo_use_list_content = '{$bo_use_list_content}' "; -if ($chk_use_email) $s .= " , bo_use_email = '{$bo_use_email}' "; -if ($chk_skin) $s .= " , bo_skin = '{$bo_skin}' "; -if ($chk_gallery_cols) $s .= " , bo_gallery_cols = '{$bo_gallery_cols}' "; -if ($chk_table_width) $s .= " , bo_table_width = '{$bo_table_width}' "; -if ($chk_page_rows) $s .= " , bo_page_rows = '{$bo_page_rows}' "; -if ($chk_subject_len) $s .= " , bo_subject_len = '{$bo_subject_len}' "; -if ($chk_new) $s .= " , bo_new = '{$bo_new}' "; -if ($chk_hot) $s .= " , bo_hot = '{$bo_hot}' "; -if ($chk_image_width) $s .= " , bo_image_width = '{$bo_image_width}' "; -if ($chk_reply_order) $s .= " , bo_reply_order = '{$bo_reply_order}' "; -if ($chk_disable_tags) $s .= " , bo_disable_tags = '{$bo_disable_tags}' "; -if ($chk_sort_field) $s .= " , bo_sort_field = '{$bo_sort_field}' "; -if ($chk_write_min) $s .= " , bo_write_min = '{$bo_write_min}' "; -if ($chk_write_max) $s .= " , bo_write_max = '{$bo_write_max}' "; -if ($chk_comment_min) $s .= " , bo_comment_min = '{$bo_comment_min}' "; -if ($chk_comment_max) $s .= " , bo_comment_max = '{$bo_comment_max}' "; -if ($chk_upload_count) $s .= " , bo_upload_count = '{$bo_upload_count}' "; -if ($chk_upload_size) $s .= " , bo_upload_size = '{$bo_upload_size}' "; -if ($chk_include_head) $s .= " , bo_include_head = '{$bo_include_head}' "; -if ($chk_include_tail) $s .= " , bo_include_tail = '{$bo_include_tail}' "; -if ($chk_content_head) $s .= " , bo_content_head = '{$bo_content_head}' "; -if ($chk_content_tail) $s .= " , bo_content_tail = '{$bo_content_tail}' "; -if ($chk_insert_content) $s .= " , bo_insert_content = '{$bo_insert_content}' "; -if ($chk_use_search) $s .= " , bo_use_search = '{$bo_use_search}' "; -if ($chk_order_search) $s .= " , bo_order_search = '{$bo_order_search}' "; +if (is_checked('chk_use_sideview')) $fields .= " , bo_use_sideview = '{$bo_use_sideview}' "; +if (is_checked('chk_use_file_content')) $fields .= " , bo_use_file_content = '{$bo_use_file_content}' "; +if (is_checked('chk_use_secret')) $fields .= " , bo_use_secret = '{$bo_use_secret}' "; +if (is_checked('chk_use_dhtml_editor')) $fields .= " , bo_use_dhtml_editor = '{$bo_use_dhtml_editor}' "; +if (is_checked('chk_use_rss_view')) $fields .= " , bo_use_rss_view = '{$bo_use_rss_view}' "; +if (is_checked('chk_use_good')) $fields .= " , bo_use_good = '{$bo_use_good}' "; +if (is_checked('chk_use_nogood')) $fields .= " , bo_use_nogood = '{$bo_use_nogood}' "; +if (is_checked('chk_use_name')) $fields .= " , bo_use_name = '{$bo_use_name}' "; +if (is_checked('chk_use_signature')) $fields .= " , bo_use_signature = '{$bo_use_signature}' "; +if (is_checked('chk_use_ip_view')) $fields .= " , bo_use_ip_view = '{$bo_use_ip_view}' "; +if (is_checked('chk_use_list_view')) $fields .= " , bo_use_list_view = '{$bo_use_list_view}' "; +if (is_checked('chk_use_list_content')) $fields .= " , bo_use_list_content = '{$bo_use_list_content}' "; +if (is_checked('chk_use_email')) $fields .= " , bo_use_email = '{$bo_use_email}' "; +if (is_checked('chk_skin')) $fields .= " , bo_skin = '{$bo_skin}' "; +if (is_checked('chk_gallery_cols')) $fields .= " , bo_gallery_cols = '{$bo_gallery_cols}' "; +if (is_checked('chk_table_width')) $fields .= " , bo_table_width = '{$bo_table_width}' "; +if (is_checked('chk_page_rows')) $fields .= " , bo_page_rows = '{$bo_page_rows}' "; +if (is_checked('chk_subject_len')) $fields .= " , bo_subject_len = '{$bo_subject_len}' "; +if (is_checked('chk_new')) $fields .= " , bo_new = '{$bo_new}' "; +if (is_checked('chk_hot')) $fields .= " , bo_hot = '{$bo_hot}' "; +if (is_checked('chk_image_width')) $fields .= " , bo_image_width = '{$bo_image_width}' "; +if (is_checked('chk_reply_order')) $fields .= " , bo_reply_order = '{$bo_reply_order}' "; +if (is_checked('chk_sort_field')) $fields .= " , bo_sort_field = '{$bo_sort_field}' "; +if (is_checked('chk_write_min')) $fields .= " , bo_write_min = '{$bo_write_min}' "; +if (is_checked('chk_write_max')) $fields .= " , bo_write_max = '{$bo_write_max}' "; +if (is_checked('chk_comment_min')) $fields .= " , bo_comment_min = '{$bo_comment_min}' "; +if (is_checked('chk_comment_max')) $fields .= " , bo_comment_max = '{$bo_comment_max}' "; +if (is_checked('chk_upload_count')) $fields .= " , bo_upload_count = '{$bo_upload_count}' "; +if (is_checked('chk_upload_size')) $fields .= " , bo_upload_size = '{$bo_upload_size}' "; +if (is_checked('chk_include_head')) $fields .= " , bo_include_head = '{$bo_include_head}' "; +if (is_checked('chk_include_tail')) $fields .= " , bo_include_tail = '{$bo_include_tail}' "; +if (is_checked('chk_content_head')) $fields .= " , bo_content_head = '{$bo_content_head}' "; +if (is_checked('chk_content_tail')) $fields .= " , bo_content_tail = '{$bo_content_tail}' "; +if (is_checked('chk_insert_content')) $fields .= " , bo_insert_content = '{$bo_insert_content}' "; +if (is_checked('chk_use_search')) $fields .= " , bo_use_search = '{$bo_use_search}' "; +if (is_checked('chk_order_search')) $fields .= " , bo_order_search = '{$bo_order_search}' "; for ($i=1; $i<=10; $i++) { - if ($_POST['chk_'.$i]) { - $s .= " , bo_{$i}_subj = '".$_POST['bo_'.$i.'_subj']."' "; - $s .= " , bo_{$i} = '".$_POST['bo_'.$i]."' "; + if (is_checked('chk_'.$i)) { + $fields .= " , bo_{$i}_subj = '".$_POST['bo_'.$i.'_subj']."' "; + $fields .= " , bo_{$i} = '".$_POST['bo_'.$i]."' "; } } -if ($s) { +if ($fields) { $sql = " update {$g4['board_table']} set bo_table = bo_table - {$s} + {$fields} where gr_id = '$gr_id' "; sql_query($sql); } From d867e98304ef393f02c3c332f1d3e4d21e367cc7 Mon Sep 17 00:00:00 2001 From: gnuboard Date: Wed, 9 Jan 2013 15:51:44 +0900 Subject: [PATCH 10/13] =?UTF-8?q?ckeditor=20=EB=A5=BC=20textarea=20?= =?UTF-8?q?=EA=B0=92=EC=9D=84=20=EC=96=BB=EC=96=B4=EC=98=A4=EB=8A=94=20get?= =?UTF-8?q?data=20=EC=99=80=20=EB=B9=84=EC=96=B4=20=EC=9E=88=EB=8A=94?= =?UTF-8?q?=EC=A7=80=EB=A5=BC=20=EA=B2=80=EC=82=AC=ED=95=98=EB=8A=94=20emp?= =?UTF-8?q?ty=20=ED=95=A8=EC=88=98=EB=A1=9C=20=EB=82=98=EB=88=94?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- plugin/ckeditor/ckeditor.lib.php | 12 +++++++----- 1 file changed, 7 insertions(+), 5 deletions(-) diff --git a/plugin/ckeditor/ckeditor.lib.php b/plugin/ckeditor/ckeditor.lib.php index b13103801..2f2609403 100644 --- a/plugin/ckeditor/ckeditor.lib.php +++ b/plugin/ckeditor/ckeditor.lib.php @@ -10,11 +10,13 @@ function editor_textarea($id, $content="", $class="") return $str; } -function chk_editor($id, $textarea_name="내용") +function editor_getdata($id) { - $str = "var {$id}_data = CKEDITOR.instances.{$id}.getData();\n"; - $str .= " "; - $str .= "if (!{$id}_data) { alert(\"$textarea_name 입력해 주십시오.\"); return false; }\n"; - return $str; + return "var {$id}_data = CKEDITOR.instances.{$id}.getData();\n"; +} + +function editor_empty($id, $textarea_name="내용을") +{ + return "if (!{$id}_data) { alert(\"$textarea_name 입력해 주십시오.\"); return false; }\n"; } ?> \ No newline at end of file From e53cc93703b282f84fee80ed616c8e35e2dd4537 Mon Sep 17 00:00:00 2001 From: gnuboard Date: Wed, 9 Jan 2013 15:52:10 +0900 Subject: [PATCH 11/13] =?UTF-8?q?capslock=20=EA=B2=80=EC=82=AC=20=EA=B8=B0?= =?UTF-8?q?=EB=8A=A5=20=EC=A0=9C=EA=B1=B0?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- skin/member/neo/login.skin.php | 4 +--- 1 file changed, 1 insertion(+), 3 deletions(-) diff --git a/skin/member/neo/login.skin.php b/skin/member/neo/login.skin.php index 7c77074c0..d132295bb 100644 --- a/skin/member/neo/login.skin.php +++ b/skin/member/neo/login.skin.php @@ -30,8 +30,6 @@ else $action_url = "{$g4['bbs_path']}/login_check.php"; ?> - - @@ -40,7 +38,7 @@ else - + From ce23c317e261a18bd70e0803582afd1bb98596db Mon Sep 17 00:00:00 2001 From: gnuboard Date: Wed, 9 Jan 2013 15:52:58 +0900 Subject: [PATCH 12/13] =?UTF-8?q?cheditor=20=EC=99=80=20captcha=20?= =?UTF-8?q?=EC=97=90=20=EA=B4=80=EB=A0=A8=EB=90=9C=20js=20=ED=8C=8C?= =?UTF-8?q?=EC=9D=BC=EC=9D=84=20=EA=B3=84=EC=86=8D=20=ED=8F=AC=ED=95=A8=20?= =?UTF-8?q?=EC=8B=9C=ED=82=B4?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- head.sub.php | 11 +++++++++++ 1 file changed, 11 insertions(+) diff --git a/head.sub.php b/head.sub.php index e33ea5aae..3b19fd6a3 100644 --- a/head.sub.php +++ b/head.sub.php @@ -73,6 +73,17 @@ var g4_is_ie = navigator.userAgent.toLowerCase().indexOf("msie") != -1; +js)) { + $g4['js_file'][] = $editor->js; + if (isset($editor->config_js)) { + $g4['js_file'][] = $editor->config_js; + } +} +if (isset($captcha->js)) { + $g4['js_file'][] = $captcha->js; +} +?> From c42445b92a3fbd9d8f45774caa1d6e3526888dc1 Mon Sep 17 00:00:00 2001 From: gnuboard Date: Wed, 9 Jan 2013 15:54:10 +0900 Subject: [PATCH 13/13] =?UTF-8?q?notice=20=EC=98=A4=EB=A5=98=20=ED=95=B4?= =?UTF-8?q?=EA=B2=B0=EC=A4=91?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- adm/board_list.php | 6 ++---- adm/board_list_update.php | 9 +++------ adm/member_form.php | 17 +---------------- adm/member_list.php | 6 +++--- adm/point_list.php | 12 +----------- adm/poll_list.php | 8 +++++--- adm/visit_list.php | 7 ------- common.php | 3 ++- lib/common.lib.php | 7 +++++++ 9 files changed, 24 insertions(+), 51 deletions(-) diff --git a/adm/board_list.php b/adm/board_list.php index 57c425879..f3145f9fb 100644 --- a/adm/board_list.php +++ b/adm/board_list.php @@ -4,8 +4,6 @@ include_once('./_common.php'); auth_check($auth[$sub_menu], 'r'); -$token = get_token(); - // DHTML 에디터 사용 필드 추가 : 061021 sql_query(" ALTER TABLE `{$g4['board_table']}` ADD `bo_use_dhtml_editor` TINYINT NOT NULL AFTER `bo_use_secret` ", false); // RSS 보이기 사용 필드 추가 : 061106 @@ -19,7 +17,7 @@ if ($is_admin != "super") { $sql_search .= " and (a.gr_id = b.gr_id and b.gr_admin = '{$member['mb_id']}') "; } -if (isset($stx)) { +if ($stx) { $sql_search .= " and ( "; switch ($sfl) { case "bo_table" : @@ -155,7 +153,7 @@ for ($i=0; $row=sql_fetch_array($result); $i++) {
    게시판 포인트 설정
    - + diff --git a/adm/board_list_update.php b/adm/board_list_update.php index 58ba00830..64dab2d7b 100644 --- a/adm/board_list_update.php +++ b/adm/board_list_update.php @@ -6,15 +6,12 @@ check_demo(); auth_check($auth[$sub_menu], 'w'); -check_token(); +for ($i=0; $i>>>>>> 2b5c471bdb62542fc9cb8b6740a934c34e5de04b $open_checked = ''; $open_no_checked = 'checked="checked"'; } @@ -264,7 +249,7 @@ include_once('./admin.head.php');
    XSS 혹은 CSRF 방지 -

    관리자 권한을 탈취당하는 경우를 대비하여 패스워드를 다시 한번 확인합니다.

    +

    관리자 권한을 탈취 당하는 경우를 대비하여 관리자의 패스워드를 다시 한번 확인합니다.

    diff --git a/adm/member_list.php b/adm/member_list.php index a6cbd89df..39d697311 100644 --- a/adm/member_list.php +++ b/adm/member_list.php @@ -9,7 +9,7 @@ $token = get_token(); $sql_common = " from {$g4['member_table']} "; $sql_search = " where (1) "; -if (isset($stx)) { +if ($stx) { $sql_search .= " and ( "; switch ($sfl) { case 'mb_point' : @@ -32,7 +32,7 @@ if (isset($stx)) { if ($is_admin != 'super') $sql_search .= " and mb_level <= '{$member['mb_level']}' "; -if (!isset($sst)) { +if (!$sst) { $sst = "mb_datetime"; $sod = "desc"; } @@ -48,7 +48,7 @@ $total_count = $row['cnt']; $rows = $config['cf_page_rows']; $total_page = ceil($total_count / $rows); // 전체 페이지 계산 -if (!isset($page)) $page = 1; // 페이지가 없으면 첫 페이지 (1 페이지) +if (!$page) $page = 1; // 페이지가 없으면 첫 페이지 (1 페이지) $from_record = ($page - 1) * $rows; // 시작 열을 구함 // 탈퇴회원수 diff --git a/adm/point_list.php b/adm/point_list.php index fe1697362..5981f8f0f 100644 --- a/adm/point_list.php +++ b/adm/point_list.php @@ -9,7 +9,7 @@ $token = get_token(); $sql_common = " from {$g4['point_table']} "; $sql_search = " where (1) "; -if (isset($stx)) { +if ($stx) { $sql_search .= " and ( "; switch ($sfl) { case 'mb_id' : @@ -84,15 +84,9 @@ function point_clear() 전체 >>>>>> 35e2a0e57216e9ff77b98266f30f5e8f87800654 $row2 = sql_fetch(" select sum(po_point) as sum_point from {$g4['point_table']} "); echo ' (전체 합계 '.number_format($row2['sum_point']).'점)'; } @@ -179,11 +173,7 @@ if ($i == 0) >>>>>> 35e2a0e57216e9ff77b98266f30f5e8f87800654 ?>
    diff --git a/adm/poll_list.php b/adm/poll_list.php index e69c397dc..098002bdd 100644 --- a/adm/poll_list.php +++ b/adm/poll_list.php @@ -9,7 +9,7 @@ $token = get_token(); $sql_common = " from {$g4['poll_table']} "; $sql_search = " where (1) "; -if (isset($stx)) { +if ($stx) { $sql_search .= " and ( "; switch ($sfl) { default : @@ -44,6 +44,7 @@ $sql = " select * limit {$from_record}, {$rows} "; $result = sql_query($sql); +$listall = ''; if ($sfl || $stx) // 검색렬일 때만 처음 버튼을 보여줌 $listall = '전체목록'; @@ -115,8 +116,9 @@ if ($i==0)
    +$pagelist = get_paging($config['cf_write_pages'], $page, $total_page, "{$_SERVER['PHP_SELF']}?$qstr&page="); +if ($pagelist) { +?>
    diff --git a/adm/visit_list.php b/adm/visit_list.php index 02c57849c..288e3d8aa 100644 --- a/adm/visit_list.php +++ b/adm/visit_list.php @@ -10,9 +10,6 @@ include_once('./visit.sub.php'); $colspan = 5; -//unset($br); // 브라우저 -//unset($os); // OS - $sql_common = " from {$g4['visit_table']} "; $sql_search = " where vi_date between '{$fr_date}' and '{$to_date}' "; if (isset($domain)) @@ -105,14 +102,10 @@ if ($i == 0) >>>>>> 2b5c471bdb62542fc9cb8b6740a934c34e5de04b if ($page) { ?>
    diff --git a/common.php b/common.php index ac7bc378f..8f1f8e708 100644 --- a/common.php +++ b/common.php @@ -491,8 +491,9 @@ if (isset($bo_table)) { } } -if (isset($gr_id)) +if (!empty($_GET['gr_id'])) { $group = sql_fetch(" select * from {$g4['group_table']} where gr_id = '$gr_id' "); +} if ($is_admin != 'super') { // 접근가능 IP diff --git a/lib/common.lib.php b/lib/common.lib.php index 3551bfc7c..f4dc05874 100644 --- a/lib/common.lib.php +++ b/lib/common.lib.php @@ -1567,4 +1567,11 @@ function escape_trim($field) { return mysql_real_escape_string(htmlentities(trim($field))); } + + +// $_POST 형식에서 checkbox 엘리먼트의 checked 속성에서 checked 가 되어 넘어 왔는지를 검사 +function is_checked($field) +{ + return !empty($_POST[$field]); +} ?> \ No newline at end of file