$code = "qna"; include "../includes/header.inc"; include "../includes/dbconn.inc"; ########## ¼öÁ¤ÇϰíÀÚ ÇÏ´Â ±ÛÀÇ ÀԷ°ªÀ» »Ì¾Æ³½´Ù. ########## $query = "SELECT fid,name,subject,email,homepage,thread FROM $code WHERE uid = $number"; $result = mysql_query($query,$dbconn); $my_fid = mysql_result($result,0,0); $my_name = mysql_result($result,0,1); $my_subject = mysql_result($result,0,2); $my_email = mysql_result($result,0,3); $my_homepage = mysql_result($result,0,4); $my_thread = mysql_result($result,0,5); $my_signdate = date("Y³â m¿ù dÀÏ H½Ã iºÐ sÃÊ",$my_signdate); ########## addslashes() ÇÔ¼ö·Î escapeµÈ Á¦¸ñÀÇ ¹®ÀÚ¿À» ¿ø»óº¹±Í½ÃŲ´Ù. ########## $my_subject = stripslashes($my_subject); ########## ¿øÄ¢»ó Á¦¸ñ¿¡´Â HTML ű׸¦ Çã¿ëÇÏÁö ¾Ê´Â´Ù. ########## $my_subject = htmlspecialchars($my_subject); ?>
![]() |