I should still learn much more about Internet security, but I try my best.

I've had multiple times where the following events happened in order...

1. A major panic was blasting across news media about some virus or worm.

2. Idiosyncratically, a windoze box I was operating asked me if I wanted to run a script (because I set the thing to ask first - windoze does, or did, use IE settings across the entire OS)

3. I said "no."

4 Said worm failed to execute, and I promptly uninstalled its inert remnants.

....that's not even counting the less-complex stuff you get because some webpage thought it would be "funny" to install it.

Do you by any chance have a recommendation for a website that works without those four options? Where I could upload my thesis?

I think anonfiles.com, uploadbaz.com, and boxca.ca are scriptless, though I'm not completely sure (it's been a long time since I updated my "non-establishment distro list," lol).

There are also a few .onion hosts which could be reached with whatever passes for tor2web these days.

And if I upload it, should I also disable those four options?

That depends...

1. How vulnerable do you want to be to every security threat, whether you upload it or not, personally?

...and...

2. Do you want the easy ability to tell from the start if the site allows these settings? If "yes," it... makes it easier.

...but mostly, it's up to you. What mattes is if it works or not.