Updated

library/ajax/avatar.php

@@ -4,7 +4,10 @@ if (!defined('IN_AJAX')) die(basename(__FILE__));
 
 global $bb_cfg, $lang, $user;
 
-$mode = (string) $this->request['mode'];
+if (!$mode = (string) $this->request['mode'])
+{
+	$this->ajax_die('invalid mode (empty)');
+}
 $user_id = (int) $this->request['user_id'];
 
 if (!$user_id OR !$u_data = get_userdata($user_id))
@@ -25,7 +28,8 @@ switch ($mode)
 		$response = '<img src="'. $bb_cfg['avatars']['upload_path'] . $bb_cfg['avatars']['no_avatar'] .'" alt="'. $user_id .'" />';
 		break;
 	default:
-		$this->ajax_die('Invalid mode');
+		$this->ajax_die('Invalid mode: ' . $mode);
+		break;
 }
 
 DB()->query("UPDATE ". BB_USERS ." SET avatar_ext_id = $new_ext_id WHERE user_id = $user_id LIMIT 1");

library/ajax/change_tor_status.php

@@ -7,7 +7,10 @@ global $userdata, $bb_cfg, $lang;
 if (!isset($this->request['attach_id'])) $this->ajax_die($lang['EMPTY_ATTACH_ID']);
 
 $attach_id  = (int) $this->request['attach_id'];
-$mode    = (string) $this->request['mode'];
+if (!$mode = (string) $this->request['mode'])
+{
+	$this->ajax_die('invalid mode (empty)');
+}
 
 $comment = '';
 if ($bb_cfg['tor_comment'])
@@ -104,7 +107,7 @@ switch ($mode)
 	break;
 
 	default:
-		$this->ajax_die('Invalid mode');
+		$this->ajax_die('Invalid mode: ' . $mode);
 	break;
 }
 

library/ajax/change_user_rank.php

@@ -4,7 +4,11 @@ if (!defined('IN_AJAX')) die(basename(__FILE__));
 
 global $datastore, $lang;
 
-$ranks   = $datastore->get('ranks');
+if (!$ranks = $datastore->get('ranks'))
+{
+	$datastore->update('ranks');
+	$ranks = $datastore->get('ranks');
+}
 $rank_id = intval($this->request['rank_id']);
 
 if (!$user_id = intval($this->request['user_id']) OR !$profiledata = get_userdata($user_id))

library/ajax/index_data.php

@@ -4,7 +4,10 @@ if (!defined('IN_AJAX')) die(basename(__FILE__));
 
 global $bb_cfg, $lang, $userdata, $datastore;
 
-$mode = (string) $this->request['mode'];
+if (!$mode = (string) $this->request['mode'])
+{
+	$this->ajax_die('invalid mode (empty)');
+}
 $html = '';
 
 switch($mode)
@@ -131,7 +134,8 @@ switch($mode)
 	break;
 
 	default:
-		$this->ajax_die('Invalid mode');
+		$this->ajax_die('Invalid mode: ' . $mode);
+	break;
 }
 
 $this->response['html'] = $html;

library/ajax/manage_admin.php

@@ -116,7 +116,9 @@ switch ($mode)
 
 	default:
 
-		$this->ajax_die('Invalid mode');
+		$this->ajax_die('Invalid mode: ' . $mode);
+
+	break;
 }
 
 $this->response['mode'] = $mode;

library/ajax/manage_user.php

@@ -88,7 +88,9 @@ switch ($mode)
 
 	default:
 
-		$this->ajax_die('Invalid mode');
+		$this->ajax_die('Invalid mode: ' . $mode);
+
+	break;
 }
 
 $this->response['mode'] = $mode;

library/ajax/mod_action.php

@@ -143,5 +143,6 @@ switch ($mode)
 	break;
 
 	default:
-		$this->ajax_die('Invalid mode');
+		$this->ajax_die('Invalid mode: ' . $mode);
+	break;
 }

library/ajax/sitemap.php

@@ -42,7 +42,8 @@ switch ($mode)
 	break;
 
 	default:
-		$this->ajax_die('Invalid mode');
+		$this->ajax_die('Invalid mode: ' . $mode);
+	break;
 }
 
 $this->response['html'] = $html;

library/ajax/user_register.php

@@ -71,7 +71,8 @@ switch($mode)
 	break;
 
 	default:
-		$this->ajax_die('Invalid mode');
+		$this->ajax_die('Invalid mode: ' . $mode);
+	break;
 }
 
 $this->response['html'] = $html;

library/attach_mod/posting_attachments.php

@@ -2,13 +2,13 @@
 
 if (!defined('IN_FORUM')) die("Hacking attempt");
 
-define('FILENAME_PREFIX',         true);
-define('FILENAME_PREFIX_LENGTH',  6);
+define('FILENAME_PREFIX',         true);  // Добавлять ли в начале имени файла префикс (случайная строка)
+define('FILENAME_PREFIX_LENGTH',  6);     // Длина префикса
 
-define('FILENAME_CRYPTIC',        false);
-define('FILENAME_CRYPTIC_LENGTH', 32);
+define('FILENAME_CRYPTIC',        false); // Использовать в качестве названия файла случайную строку (псевдо-криптографическая)
+define('FILENAME_CRYPTIC_LENGTH', 32);    // Длина имени
 
-define('FILENAME_MAX_LENGTH',     128);
+define('FILENAME_MAX_LENGTH',     128);   // Максимальная длина имени файла
 
 class attach_parent
 {