Tom10 Posted April 10, 2015 Share Posted April 10, 2015 if($_SERVER['REQUEST_METHOD'] == "POST") { $dir = "./"; $file = $dir . basename($_FILES['userfile']['name']); $ext = pathinfo($file, PATHINFO_EXTENSION); $filename = $_FILES['userfile']['name']; $allowed = array('jpg', 'png', 'gif', 'bmp'); if($_FILES['userfile']['size'] > 10000) { die("File is too large!"); } if($ext != $allowed) { die("Invalid Image File. Possible hack attempt!"); } if(move_uploaded_file($_FILES['userfile']['tmp_name'], $dir)) { echo "File: ".$_FILES['userfile']['name']." has been uploaded to ".$dir."! "; } else { die("Error: ".$_FILES['userfile']['error']." "); } } This part is the problem if($ext != $allowed) { die("Invalid Image File. Possible hack attempt!"); } Link to comment https://forums.phpfreaks.com/topic/295386-upload-script/ Share on other sites More sharing options...
QuickOldCar Posted April 10, 2015 Share Posted April 10, 2015 duplicate post answered here http://forums.phpfreaks.com/topic/295385-upload-script/ Link to comment https://forums.phpfreaks.com/topic/295386-upload-script/#findComment-1508628 Share on other sites More sharing options...
Tom10 Posted April 10, 2015 Author Share Posted April 10, 2015 It said first time the admin blocked it? Link to comment https://forums.phpfreaks.com/topic/295386-upload-script/#findComment-1508630 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.