[LOS] goblin ํ’€์ด(3)

$query = "select id from prob_goblin where id='guest' and no={$_GET[no]}"; goblin ๊ฐ™์€ ๊ฒฝ์šฐ ์ „ ๊ณผ๋Š” ๋‹ค๋ฅธ ๊ฒŒ no={$_GET [no]} ์˜์—ญ์— ์ฟผ๋ฆฌ๋ฌธ์„ ์‚ฝ์ž…ํ•˜์—ฌ admin ๊ณ„์ •์œผ๋กœ ์ ‘๊ทผํ•ด์•ผ ๋ฉ๋‹ˆ๋‹ค. if(preg_match('/prob|_|\.|\(\)/i', $_GET[no])) exit("No Hack ~_~"); if(preg_match('/\'|\"|\`/i', $_GET[no])) exit("No Quotes ~_~"); ๋˜ํ•œ preg_match์˜ ์˜์—ญ์ด ํ•˜๋‚˜ ๋” ์ถ”๊ฐ€๋˜๋ฉด์„œ ์‹ฑ๊ธ€ ์ฟผํ„ฐ(')์™€ ๋”๋ธ”์ฟผํ„ฐ(") ๊ณผ ์กด์žฌํ•  ๊ฒฝ์šฐ " No Quotes " ํŽ˜์ด์ง€๋กœ ๋„˜๊น€์œผ๋กœ์จ ํ•„ํ„ฐ๋ง ์˜์—ญ์ด ์ถ”๊ฐ€๋œ ๊ฒƒ์„ ํ™•์ธํ•  ์ˆ˜ ์žˆ์Šต๋‹ˆ๋‹ค. ์‹ฑ๊ธ€ ์ฟผํ„ฐ๋ฅผ "..
CHALLENGE
1