Index: branches/unlabeled/unlabeled-1.85.2/core/kernel/db/db_event_handler.php
===================================================================
diff -u -r8180 -r8202
--- branches/unlabeled/unlabeled-1.85.2/core/kernel/db/db_event_handler.php	(.../db_event_handler.php)	(revision 8180)
+++ branches/unlabeled/unlabeled-1.85.2/core/kernel/db/db_event_handler.php	(.../db_event_handler.php)	(revision 8202)
@@ -2065,6 +2065,8 @@
 			$section = $event->getSection();
 			if (!$perm_helper->CheckUserPermission($user, $section.'.add') && !$perm_helper->CheckUserPermission($user, $section.'.edit')) {
 				$event->status = erPERM_FAIL;
+				header('HTTP/1.0 403 You don\'t have permissions to upload');
+				exit;
 				return;
 			}
 
@@ -2077,6 +2079,11 @@
 			$id = $this->Application->GetVar('id');
 			if ($id) $fname = $id.'_'.$fname;
 
+			if (!is_writable($tmp_path)) {
+				header('HTTP/1.0 500 Write permissions not set on the server');
+				exit;
+			}
+
 			move_uploaded_file($value['tmp_name'], $tmp_path.$fname);
 			exit;
 		}
@@ -2118,6 +2125,8 @@
 			header('Content-Length: '.filesize($path));
 			header('Content-Type: '.$type);
 
+			safeDefine('DBG_SKIP_REPORTING',1);
+
 			readfile($path);
 			exit();
 		}