2 - You can erase (even with mq=on) all file that are stored on the server:
$t = stripslashes($t);
$fc = fopen ("blog_comments/$t.txt", "w");
fwrite ($fc, "");
3-Using point No 1 you can do some XSS couse there isn't any anti-Xss code for admins
4-If mq=on than you can deface the site (but no injecting PHP cause < and > are properly parsed)
Firstly, what's mq (message queue?)? How can you deface the site. What's wrong with $t = stripslashes($t); ?I need some guidance..