POST\ub098 GET(\ucffc\ub9ac\uc2a4\ud2b8\ub9c1) \ub4f1\uc73c\ub85c \uac12\uc744 \uc804\ub2ec\ud560\ub54c \uc774\ub97c \uc801\uc808\ud788 \ud544\ud130\ud558\ub294 \uac83\uc740 \uad49\uc7a5\ud788 \uc911\uc694\ud55c \uac83\uc740 \ub2e4\ub4e4 \uc54c \uac83\uc774\ub2e4. XSS\uc640 SQL Injection \ub4f1 \uc911\uc694 \ubcf4\uc548 \uc704\ud611 \uc694\uc18c\uc640 \uc9c1\uacb0 \ub418\uae30 \ub54c\ubb38. \ubcf8\uc778(\uac1c\ubc1c\uc790)\uc774 \uc0dd\uac01\ud55c \uac12\ub9cc \uc815\ud655\ud558\uac8c \ubc1b\uace0 \uadf8\uc678 \ub098\uba38\uc9c0 \ubaa8\ub4e0 \uacbd\uc6b0\uc5d0 \ub300\ud574 \uc608\uc678\ucc98\ub9ac\ub97c \ud574\uc57c \ud55c\ub2e4. \uc5ec\uae30\uc11c\ub294 \uc77c\ub2e8 \uc815\ud655\ud558\uac8c \ud544\uc694\ud55c \uac12\ub9cc \uac12\ub294 \ud14c\ud06c\ub2c9 \uba87\uac00\uc9c0\ub97c \uc801\ub294\ub2e4. \uc608\uc678 \ucc98\ub9ac\ub294 \ubcc4\ub3c4<\/p>\n\n\n\n
1.\uc22b\uc790\ub9cc \ubc1b\uae30<\/p>\n\n\n\n
$value = intval($_GET[‘value’]);<\/p>\n\n\n\n
“00234” \uac19\uc774 \uc55e\uc5d0 0\uc73c\ub85c \uc2dc\uc791\ud558\ub294 \uc22b\uc790\uc758 0\uc744 \uc0b4\ub9ac\ub824\uba74<\/p>\n\n\n\n
$value = preg_replace(‘\/[^0-9]\/’, ”, $_GET[‘value’]);<\/p>\n\n\n\n
2. \uc601\ubb38\uc790, \uc22b\uc790\ub9cc \ubc1b\uae30<\/p>\n\n\n\n
$value = preg_replace(‘\/[^a-zA-Z0-9]\/’, ”, $_GET[‘value’]);<\/p>\n\n\n\n
3. \ud55c\uae00, \uc601\ubb38\uc790, \uc22b\uc790\ub9cc \ubc1b\uae30(\uc778\ucf54\ub529 \uc8fc\uc758)<\/p>\n\n\n\n
$value = preg_replace(‘\/[^\uac00-\ud7a3a-zA-Z0-9]\/’, ”, $_GET[‘value’]);<\/p>\n\n\n\n
4. \ubaa8\ub4e0 \ub370\uc774\ud130\ub97c \ub2e4 \ubc1b\uc544 DB\uc5d0 \ub123\uc744 \ub54c<\/p>\n\n\n\n
$value = mysqli_real_escape_string($conn,$_GET[‘value’]); \/\/ \ub2e8 conn\uc740 \uc720\ud6a8\ud55c MySQLi \uc5f0\uacb0 \uc778\uc2a4\ud134\uc2a4\uc5ec\uc57c \ud568.<\/p>\n\n\n\n
5. script\uc640 \uac19\uc740 HTML Tag\ub97c \ubc29\uc9c0\ud558\ub824\uba74<\/p>\n\n\n\n
$value = htmlspecialchars($_GET[‘value’]); \/\/ \ube0c\ub77c\uc6b0\uc800 \uc0c1\uc5d0\ub294 \uad04\ud638\uac00 \uadf8\ub300\ub85c \ud45c\uc2dc<\/p>\n\n\n\n
\ub9cc\uc57d \ud14c\uadf8 \uc790\uccb4\ub97c \uc9c0\uc6b0\ub824\uba74<\/p>\n\n\n\n
$value = strip_tags($_GET[‘value’]);<\/p>\n","protected":false},"excerpt":{"rendered":"
POST\ub098 GET(\ucffc\ub9ac\uc2a4\ud2b8\ub9c1) \ub4f1\uc73c\ub85c \uac12\uc744 \uc804\ub2ec\ud560\ub54c \uc774\ub97c \uc801\uc808\ud788 \ud544\ud130\ud558\ub294 \uac83\uc740 \uad49\uc7a5\ud788 \uc911\uc694\ud55c \uac83\uc740 \ub2e4\ub4e4 \uc54c \uac83\uc774\ub2e4. XSS\uc640 SQL Injection \ub4f1 \uc911\uc694 \ubcf4\uc548 \uc704\ud611 \uc694\uc18c\uc640 \uc9c1\uacb0 \ub418\uae30 \ub54c\ubb38. \ubcf8\uc778(\uac1c\ubc1c\uc790)\uc774 \uc0dd\uac01\ud55c \uac12\ub9cc \uc815\ud655\ud558\uac8c \ubc1b\uace0 \uadf8\uc678 \ub098\uba38\uc9c0 \ubaa8\ub4e0 \uacbd\uc6b0\uc5d0 \ub300\ud574 \uc608\uc678\ucc98\ub9ac\ub97c \ud574\uc57c \ud55c\ub2e4. \uc5ec\uae30\uc11c\ub294 \uc77c\ub2e8 \uc815\ud655\ud558\uac8c \ud544\uc694\ud55c \uac12\ub9cc \uac12\ub294 \ud14c\ud06c\ub2c9 \uba87\uac00\uc9c0\ub97c \uc801\ub294\ub2e4. \uc608\uc678 \ucc98\ub9ac\ub294 \ubcc4\ub3c4 1.\uc22b\uc790\ub9cc \ubc1b\uae30 $value = […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[19,16],"tags":[],"class_list":["post-757","post","type-post","status-publish","format-standard","hentry","category-php-mysql","category-programming"],"_links":{"self":[{"href":"http:\/\/jhp.io\/index.php?rest_route=\/wp\/v2\/posts\/757","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/jhp.io\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/jhp.io\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/jhp.io\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/jhp.io\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=757"}],"version-history":[{"count":1,"href":"http:\/\/jhp.io\/index.php?rest_route=\/wp\/v2\/posts\/757\/revisions"}],"predecessor-version":[{"id":758,"href":"http:\/\/jhp.io\/index.php?rest_route=\/wp\/v2\/posts\/757\/revisions\/758"}],"wp:attachment":[{"href":"http:\/\/jhp.io\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=757"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/jhp.io\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=757"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/jhp.io\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=757"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}