4
Or you can try this hack.
line 137 of include/functions.php
function xoops_refcheck($docheck=1)
{
$ref = xoops_getenv('HTTP_REFERER');
if ($docheck == 0) {
return true;
}
if ($ref == '') {
[d]return false;[/d]
[color=ff0000]return true;[/color]
}
if (strpos($ref, XOOPS_URL) !== 0 ) {
return false;
}
return true;
}
This is a some kind of danger hack, because this function protects you from CSRF.
But, it is only a site's admin that this check is absolutely necessary, I think.
For the site where begginers's ratio is very high, this hack is a considerable choice.
If you turn this hack on, don't forget cheking that referer is sent from your browser correctly.
This check is needed for another admins but you.
