Skip to content

Commit

Permalink
Fix #3806 - allow do_search to be GET or POST (#3823)
Browse files Browse the repository at this point in the history
  • Loading branch information
@euantorano @dvz
euantorano authored and dvz committed Nov 5, 2019
1 parent 0ab5116 commit e569535
Show file tree
Hide file tree
Showing 2 changed files with 10 additions and 10 deletions.
14 changes: 7 additions & 7 deletions install/resources/mybb_theme.xml
View file
Expand Up @@ -3942,7 +3942,7 @@ var announcement_quickdelete_confirm = "{$lang->announcement_quickdelete_confirm
</tr>
</table>
<br />]]></template>
<template name="forumdisplay_searchforum" version="120"><![CDATA[<form action="search.php" method="post">
<template name="forumdisplay_searchforum" version="1822"><![CDATA[<form action="search.php">
<span class="smalltext"><strong>{$lang->search_forum}</strong></span>
<input type="text" class="textbox" name="keywords" /> {$gobutton}
<input type="hidden" name="action" value="do_search" />
Expand Down Expand Up @@ -4255,7 +4255,7 @@ $(".forumjump").on('change', function() {
<template name="header_menu_memberlist" version="1800"><![CDATA[<li><a href="{$mybb->settings['bburl']}/memberlist.php" class="memberlist">{$lang->toplinks_memberlist}</a></li>]]></template>
<template name="header_menu_portal" version="1800"><![CDATA[<li><a href="{$mybb->settings['bburl']}/portal.php" class="portal">{$lang->toplinks_portal}</a></li>]]></template>
<template name="header_menu_search" version="1800"><![CDATA[<li><a href="{$mybb->settings['bburl']}/search.php" class="search">{$lang->toplinks_search}</a></li>]]></template>
<template name="header_quicksearch" version="1804"><![CDATA[ <form action="{$mybb->settings['bburl']}/search.php" method="post">
<template name="header_quicksearch" version="1822"><![CDATA[ <form action="{$mybb->settings['bburl']}/search.php">
<fieldset id="search">
<input name="keywords" type="text" class="textbox" />
<input value="{$lang->search_button}" type="submit" class="button" />
Expand Down Expand Up @@ -9324,13 +9324,13 @@ if(use_xmlhttprequest == "1")
</tr>
</table>
<br />]]></template>
<template name="portal_search" version="1811"><![CDATA[<table border="0" cellspacing="{$theme['borderwidth']}" cellpadding="{$theme['tablespace']}" class="tborder">
<template name="portal_search" version="1822"><![CDATA[<table border="0" cellspacing="{$theme['borderwidth']}" cellpadding="{$theme['tablespace']}" class="tborder">
<tr>
<td class="thead"><strong>{$lang->search_forums}</strong></td>
</tr>
<tr>
<td class="trow1" align="center">
<form method="post" action="{$mybb->settings['bburl']}/search.php">
<form action="{$mybb->settings['bburl']}/search.php">
<input type="hidden" name="action" value="do_search" />
<input type="hidden" name="postthread" value="1" />
<input type="hidden" name="forums" value="all" />
Expand Down Expand Up @@ -9494,7 +9494,7 @@ if(use_xmlhttprequest == "1")
captchaTarget = $('input[name="submit"], #quick_reply_submit').filter(function(){
return $(this).closest('#quick_login').length == 0
});

captchaTarget.attr('data-size', 'invisible').unbind('click');

grecaptcha.render(captchaTarget.get(0), {
Expand Down Expand Up @@ -10942,14 +10942,14 @@ document.write('<br /><span class="smalltext"><a href="javascript:void(0)" oncli
<a href="javascript:void(0)" onclick="Report.reportReputation({$reputation_vote['rid']}); return false;" class="postbit_report"><span>{$lang->report_vote}</span></a>
</div>]]>
</template>
<template name="search" version="1820"><![CDATA[<html>
<template name="search" version="1822"><![CDATA[<html>
<head>
<title>{$mybb->settings['bbname']} - {$lang->search}</title>
{$headerinclude}
</head>
<body>
{$header}
<form method="post" action="search.php">
<form action="search.php">
<input type="hidden" name="action" value="do_search" />
<table border="0" cellspacing="{$theme['borderwidth']}" cellpadding="{$theme['tablespace']}" class="tborder">
<tr>
Expand Down
6 changes: 3 additions & 3 deletions search.php
View file
Expand Up @@ -1425,7 +1425,7 @@
{
$where_sql .= "AND ((fid IN(".implode(',', $onlyusfids).") AND uid='{$mybb->user['uid']}') OR fid NOT IN(".implode(',', $onlyusfids)."))";
}

$tids = '';
$comma = '';
$query = $db->simple_select("threads", "tid", $where_sql);
Expand Down Expand Up @@ -1520,7 +1520,7 @@
$tids .= $comma.$tid;
$comma = ',';
}

$sid = md5(uniqid(microtime(), true));
$searcharray = array(
"sid" => $db->escape_string($sid),
Expand All @@ -1538,7 +1538,7 @@
$db->insert_query("searchlog", $searcharray);
redirect("search.php?action=results&sid=".$sid, $lang->redirect_searchresults);
}
elseif($mybb->input['action'] == "do_search" && $mybb->request_method == "post")
elseif($mybb->input['action'] == "do_search")
{
$plugins->run_hooks("search_do_search_start");

Expand Down

0 comments on commit e569535

Please sign in to comment.