if(!$admin){ echo(""); } $code = "notice"; include "../includes/header.inc"; include "../includes/dbconn.inc"; ########## ¼öÁ¤ÇϰíÀÚ ÇÏ´Â ±ÛÀÇ ÀԷ°ªÀ» »Ì¾Æ³½´Ù. ########## $query = "SELECT subject,signdate FROM notice WHERE uid = $number"; $result = mysql_query($query,$dbconn); $my_subject = mysql_result($result,0,0); $my_signdate = mysql_result($result,0,1); $my_signdate = date("Y³â m¿ù dÀÏ H½Ã iºÐ sÃÊ",$my_signdate); ########## addslashes() ÇÔ¼ö·Î escapeµÈ Á¦¸ñÀÇ ¹®ÀÚ¿À» ¿ø»óº¹±Í½ÃŲ´Ù. ########## $my_subject = stripslashes($my_subject); ########## ¿øÄ¢»ó Á¦¸ñ¿¡´Â HTML ű׸¦ Çã¿ëÇÏÁö ¾Ê´Â´Ù. ########## $my_subject = htmlspecialchars($my_subject); ?>
![]() |