포인트 랭킹에서 관리자 아이디 노출.. 정보
포인트 랭킹에서 관리자 아이디 노출..본문
http://www.sir.co.kr/bbs/board.php?bo_table=g4_skin&wr_id=16833&sca=&sfl=wr_subject&stx=%C6%F7%C0%CE%C6%AE+%B7%A9%C5%B7&sop=and
현재 이 스킨을 사용중인데.. 관리자 아이디가 노출이 되서 관리자 아이디 노출을 없애고 싶습니다..ㅠ
검색을 해봐도 안나와서 이렇게 올립니다.ㅠ
<rank.php 파일입니다.
<?
if (!defined("_GNUBOARD_")) exit;
include_once("./_common.php");
include_once("$g4[path]/head.sub.php");
define("_CO_POINT_RANK_", TRUE);
$html_title = "포인트 랭킹";
$g4[title] = "" . $html_title;
?>
<?
if ($member[mb_level] < 5)
echo "<script>
alert('회원만 조회하실수 있습니다.');
location.href='/bbs/login.php?wr_id=&url=point_rank.php';
</script>";
?>
<style type="text/css">
<!--
.bk123 {
border: 1px solid #CCCCCC;
}
.bkbk {
border: 1px solid #999999;
}
-->
</style>
<table width="98%" border="0" cellpadding="0" cellspacing="0">
<tr>
<td height="15" colspan="5" align="left" valign="top"></td>
</tr>
<tr>
<td height="100" colspan="5" align="left" valign="middle">
<table width="100%" border="0" cellpadding="0" cellspacing="0" class="bk123">
<?
if ($member[mb_id])
{
?>
<tr>
<td height="35" style="padding-left:20px;"><?
$sql = " select sum(mb_point) as sum_point from $g4[member_table]";
$row = sql_fetch($sql);
$sum_point = $row[sum_point];
echo "레벨상황: 현재 <b>".$member[mb_id]."</b>님의 포인트는 <B>".$member[mb_point]."점</B>";
$sql = " select count(mb_id) as cnt from $g4[member_table]
where mb_point >= '$member[mb_point]' order by mb_point desc ";
$row = sql_fetch($sql);
$sql2 = " select count(mb_id) as cnt from $g4[member_table]";
$row2 = sql_fetch($sql2);
$total_count = $row2[cnt];
echo " 이고, 랭킹은 전체회원수 <b>".$total_count."</b>명중 <B>".number_format($row[cnt])."등</B> 입니다.<br>";
?></td>
</tr>
<? } ?>
</table></td>
</tr>
<tr>
<td width="11%"><b><font color="blue">랭킹</font></b></td>
<td width="23%" background="img/title_bg.gif" height="25"><b><font color="blue">닉네임</font></b></td>
<td width="17%" background="img/title_bg.gif"><strong><font color="blue">이름</font></strong></td>
<td width="17%" background="img/title_bg.gif" height="25"><b><font color="blue">아이디</font></b></td>
<td width="19%" background="img/title_bg.gif" align="right" height="25"><b><font color="blue">포인트</font></b></td>
</tr>
<tr>
<td colspan="5" height="5"></td>
</tr>
<tr>
<td colspan="5" height="1" bgcolor="#CCCCCC"></td>
</tr>
<tr>
<td colspan="5" height="5"></td>
</tr>
<?
$sql = " select count(*) as cnt from $g4[member_table]";
$row = sql_fetch($sql);
$total_count = $row[cnt];
$rows = 20;
$total_page = ceil($total_count / $rows);
if ($page == "") { $page = 1; }
$from_record = ($page - 1) * $rows;
$mod = 48;
$tbl_col =2 ;
$tbl_col_sep = (int)($mod / $tbl_col) + ($mod % $tbl_col) ;
if($_GET[keyword]!="")
{
if($_GET[type]==0)
{
$keyword_yi="where mb_nick='$_GET[keyword]'";
}
if($_GET[type]==1)
{
$keyword_yi="where mb_name='$_GET[keyword]'";
}
if($_GET[type]==2)
{
$keyword_yi="where mb_id='$_GET[keyword]'";
}
}
$sql = " select * from $g4[member_table] $keyword_yi
order by mb_point desc, mb_today_login desc
limit $from_record, $rows ";
$sql11 = " select count(*) from $g4[member_table] $keyword_yi
order by mb_point desc, mb_today_login desc
";
$result = sql_query($sql);
$result11 = sql_query($sql11);
//echo $rsn11;
$rsn11=mysql_fetch_array($result11);
if($rsn11[0]==0)
{
if($_GET[type]==0)
{
$ty="닉네임";
}
if($_GET[type]==1)
{
$ty="이름";
}
if($_GET[type]==2)
{
$ty="아이디";
}
echo "<tr><td colspan=6 align=center height=150> 검색하신 $ty(<font color=red>$_GET[keyword]</font>) 에 대한 검색결과가 없습니다</td></tr>";
}
for ($i=0; $row=sql_fetch_array($result); $i++)
{
$rank = (($page - 1) * $rows) + $i + 1;
$point = number_format($row[mb_point]);
$id = $row[mb_id];
?>
<tr height="30">
<td width="11%" height="35"><?=$rank?></td>
<td height="35"><?= level_icon($row[mb_id])?> <a title="쪽지보내기" onfocus='this.blur()' style="FILTER: blendTrans(duration=0.7); CURSOR: pointer" onclick="window.open('/bbs/memo_form.php?me_recv_mb_id=<?=$row[mb_id]?>','www_yiwuauction_com1','width=602,height=521,toolbars=no,resizable=no,scrollbars=no')"><?=$row[mb_nick]?></a> </td>
<td height="35">
<font color="#3399FF"><?=$row[mb_name]?></font></td>
<td width="17%" height="35"><a title="정보보기" onfocus='this.blur()' style="FILTER: blendTrans(duration=0.7); CURSOR: pointer" onclick="window.open('/bbs/profile.php?mb_id=<?=$row[mb_id]?>','www_yiwuauction_com2','width=602,height=521,toolbars=no,resizable=no,scrollbars=no')"><b><?=$row[mb_id]?></b></a></td>
<td width="19%" height="35" align="right">
<p><font color="#FF0000"><?=$point?> 점</font></p></td>
</tr>
<tr>
<td colspan="5" height="1" background="img/dot_line.gif"></td>
</tr>
<? } ?>
<tr>
<td colspan="5" height="30"></td>
</tr>
<tr>
<td height="20" colspan="5">
<table width="98%" height="20" border="0" cellpadding="0" cellspacing="0">
<form id="form1" name="form1" method="get" action=""><tr>
<td width="423" valign="middle">
<?
if($_GET[keyword]=="")
{
$page = get_paging($config[cf_write_pages], $page, $total_page, "?$qstr&page=");
echo "<p><table width=100% cellpadding=0 cellspacing=0><tr><td align=center>$page</td></tr></table>";
}
?></td>
<td width="187" align="right" valign="middle">
<div align="center">
<select name="type" id="type">
<option value="0" <?php if($_GET[type]==0){ echo "selected";}?>>닉네임</option>
<option value="1" <?php if($_GET[type]==1){ echo "selected";}?>>이름</option>
<option value="2" <?php if($_GET[type]==2){ echo "selected";}?>>아이디</option>
</select>
<input name="keyword" type="text" class="bkbk" id="keyword" size="15" value="<?=$_GET[keyword]?>"/>
</div> </td>
<td width="41" align="right"><input type="image" name="imageField" src="img/btn_post_search.gif" /></td>
</tr></form>
</table></td>
</tr>
<tr>
<td height="15" colspan="5"> </td>
</tr>
</table>
댓글 전체
감사합니다 ^^