diff --git a/mobile/shop/_common.php b/mobile/shop/_common.php
index 626e5075f..f75c60696 100644
--- a/mobile/shop/_common.php
+++ b/mobile/shop/_common.php
@@ -1,6 +1,19 @@
 <?php
 include_once('../../common.php');
 
+if (isset($_REQUEST['sort']))  {
+    $sort = trim($_REQUEST['sort']);
+    $sort = preg_replace("/[\<\>\'\"\\\'\\\"\%\=\(\)\s]/", "", $sort);
+} else {
+    $sort = '';
+}
+
+if (isset($_REQUEST['sortodr']))  {
+    $sortodr = preg_match("/^(asc|desc)$/i", $sortodr) ? $sortodr : '';
+} else {
+    $sortodr = '';
+}
+
 if (!defined('G5_USE_SHOP') || !G5_USE_SHOP)
     die('<p>쇼핑몰 설치 후 이용해 주십시오.</p>');
 define('_SHOP_', true);