Permalink
Browse files

sst 변수 필터링 특수문자 추가

  • Loading branch information...
1 parent 7f6a9a0 commit 6e05353f31179a3082d0308bf868b9061e5e252c chicpro committed Apr 4, 2016
Showing with 1 addition and 1 deletion.
  1. +1 −1 common.php
View
@@ -255,7 +255,7 @@ function sql_escape_string($str)
if (isset($_REQUEST['sst'])) {
$sst = trim($_REQUEST['sst']);
- $sst = preg_replace("/[\<\>\'\"\\\'\\\"\%\=\(\)\s]/", "", $sst);
+ $sst = preg_replace("/[\<\>\'\"\\\'\\\"\%\=\(\)\/\^\*\s]/", "", $sst);
if ($sst)
$qstr .= '&amp;sst=' . urlencode($sst); // search sort (검색 정렬 필드)
} else {

0 comments on commit 6e05353

Please sign in to comment.