33
Thanks Durator, now I know I'm not crazy. lol
Regarding your suggestion, would you mind pointing me in the right direction to set the upload directory permissions to refuse everything? I'll look for it myself in the meanwhile.
Edit:
I fixed it by going into that file name above and removed the allow_attachments from the line
if ($forum->getVar('allow_attachments') && $topic_handler->getPermission($forum, $topic_status, 'attach')) {
this removed the text box and browse button from the form completely.
--------------
I also did this for the popnupblog by removing the code . . .
// File upload By Yoshi.Sakai, bluemooninc.biz 2004/3/14
//
if (is_object($xoopsUser)){
echo "</td></tr><tr><td class='head' valign='top' nowrap='nowrap'>Upload File</td>\n";
echo "<td class='even'><INPUT TYPE='hidden' NAME='MAX_FILE_SIZE' VALUE='maxbyte'>";
if ($BlogCNF['maxbyte']>=1000000){
$maxbyte_str = sprintf("%d M",$BlogCNF['maxbyte']/1000000);
} elseif ($BlogCNF['maxbyte']>=1000){
$maxbyte_str = sprintf("%d K",$BlogCNF['maxbyte']/1000);
} else {
$maxbyte_str = sprintf("%d ",$BlogCNF['maxbyte']);
}
echo "<INPUT type='file' size='50' name='upfile'> Max".$maxbyte_str."Byte.";
}
// upload end.
from the file /popnupblog/edit.php
here is hoping that everything still works ok. lol It shouldn't create a problem though.