alert('¿Ã¹Ù¸¥ À̸ÞÀÏ ÁÖ¼Ò°¡ ¾Æ´Õ´Ï´Ù.\\nÀ̸ÞÀÏ ÁÖ¼Ò¸¦ Á¤È®È÷ Àû¾îÁֽʽÿÀ.') history.go(-1) "); exit; } if(ereg("([^[:space:]]+)", $homepage) && (!ereg("http://([0-9a-zA-Z./@~?&=_]+)", $homepage)) ) { echo(""); exit; } if(!ereg("([^[:space:]]+)", $subject)) { echo(""); exit; } if(!ereg("(^[0-9a-zA-Z]{4,}$)", $passwd)) { echo(""); exit; } if(!ereg("([^[:space:]]+)", $comment)) { echo(""); exit; } ########## µ¥ÀÌÅͺ£À̽º¿¡ ¿¬°áÇÑ´Ù. ########### include "../includes/dbconn.inc"; ########## »õ·Î¿î °Ô½Ã¹°ÀÇ fid(family id), uid(unique id)°ªÀ» °áÁ¤ÇÑ´Ù. ########## $result = mysql_query("SELECT max(uid), max(fid) FROM qna",$dbconn); if (!$result) { echo(""); exit; } $row = mysql_fetch_row($result); if($row[0]) { $new_uid = $row[0] + 1; } else { $new_uid = 1; } if($row[1]) { $new_fid = $row[1] + 1; } else { $new_fid = 1; } $signdate = time(); ########## Á¦¸ñ°ú º»¹®ÀÇ ¹®ÀÚ¿­¿¡ Æ÷ÇÔµÈ Æ¯¼ö¹®ÀÚ¸¦ escape½ÃŲ´Ù. ########## $subject = addslashes($subject); $comment = addslashes($comment); ########## µ¥ÀÌÅͺ£À̽º¿¡ ÀԷ°ªÀ» »ðÀÔÇÑ´Ù. ########## $query = "INSERT INTO qna (uid, fid, name, email, homepage, subject, comment, passwd, signdate, ref, thread) VALUES ($new_uid, $new_fid, '$name', '$email', '$homepage', '$subject', '$comment', password('$passwd'), $signdate, 0,'A')"; $result = mysql_query($query,$dbconn); if($result) { ########## ¸®½ºÆ® Ãâ·ÂÈ­¸éÀ¸·Î À̵¿ÇÑ´Ù. ########## echo (""); } else { echo(""); exit; } ?>