$uid = $_GET[uid];
$c_uid = $_POST[c_uid];
$c_name = htmlspecialchars($_POST[c_name]);
$c_comment = htmlspecialchars($_POST[c_comment]);
$c_pass = htmlspecialchars($_POST[c_pass]);
$c_signdate = time();
$ip_addr = $_SERVER["REMOTE_ADDR"];
$c_delno = addslashes($_GET[c_delno]);
$del_pass = $_POST[del_pass];
if(!$c_delno){
$qry = "INSERT INTO $c_board VALUES ('','$c_uid','$c_name','$c_comment','$c_pass','$c_signdate','$ip_addr')";
mysql_query($qry);
echo "";
}else{
/* ÆÐ½º¿öµå üũ */
$qry = "SELECT uid FROM $c_board WHERE c_pass = '$del_pass' AND uid = '$c_delno'";
$result = mysql_query($qry);
$passNum = mysql_num_rows($result);
if(!$passNum){
ALERT ('ÆÐ½º¿öµå°¡ ÀÏÄ¡ÇÏÁö ¾Ê½À´Ï´Ù.');
}
/* ÄÚ¸àÆ® »èÁ¦ */
$qry = "DELETE FROM $c_board WHERE uid = $c_delno";
mysql_query($qry);
echo "";
}
?>