--- Upload/inc/plugins/regsecureq.php +++ Upload/inc/plugins/regsecureq.php @@ -175,7 +175,7 @@ $regq_templates = array( 'regsecureq' => '<br /> <fieldset class="trow2"> -<script type="text/javascript" src="jscripts/regsecureq.js?ver=100"></script> +<script type="text/javascript" src="jscripts/regsecureq.js?ver=102"></script> <legend><strong>{$lang->regsecureq}</strong></legend> <table cellspacing="0" cellpadding="{$theme[\'tablespace\']}"> <tr> @@ -199,7 +199,7 @@ <!-- if(use_xmlhttprequest == "1") { - document.write(\'<input type="button" class="button" tabindex="11000" name="regsecureq_change" value="{$lang->regq_change}" onclick="regsecureq.change();return false;" \/>\'); + document.write(\'<input type="button" class="button" tabindex="11000" name="regsecureq_change" value="{$lang->regq_change}" onclick="return regsecureq.change();" \/>\'); } // --> </script>' @@ -388,6 +388,16 @@ } } } + else + { + // Possible bypass attempt. Invalidate request if questions exist. + $query = $db->query("SELECT COUNT(*) AS `count` FROM ".TABLE_PREFIX.$prefix."questions"); + $qdata = $db->fetch_array($query); + if($qdata['count'] > 0) + { + $data->set_error($lang->regq_invalid); + } + } } return $data; } --- Upload/jscripts/regsecureq.js +++ Upload/jscripts/regsecureq.js @@ -7,7 +7,6 @@ method: 'get', onComplete: function(request) { regsecureq.change_complete(request); } }); - document.body.style.cursor = 'wait'; return false; }, @@ -34,7 +33,6 @@ { this.spinner.destroy(); this.spinner = ''; - document.body.style.cursor = 'default'; } Element.removeClassName('regsecureans_status', "validation_success");