Index: branches/version-2/data/class/pages/mypage/LC_Page_Mypage_Order.php
===================================================================
--- branches/version-2/data/class/pages/mypage/LC_Page_Mypage_Order.php	(revision 16582)
+++ branches/version-2/data/class/pages/mypage/LC_Page_Mypage_Order.php	(revision 17680)
@@ -103,4 +103,9 @@
     function lfGetOrderDetail($order_id) {
         $objQuery = new SC_Query();
+        $objCustomer = new SC_Customer();
+        //customer_idを検証
+        $customer_id = $objCustomer->getValue("customer_id");
+        $order_count = $objQuery->count("dtb_order", "order_id = ? and customer_id = ?", array($order_id, $customer_id));
+        if ($order_count != 1) return array();
         $col = "product_id, classcategory_id1, classcategory_id2, quantity";
         $where = "order_id = ?";
@@ -109,4 +114,5 @@
         return $arrRet;
     }
+    
 }
 ?>