Tom10 Posted April 10, 2015 Share Posted April 10, 2015 if($_SERVER['REQUEST_METHOD'] == "POST") { $dir = "./"; $file = $dir . basename($_FILES['userfile']['name']); $ext = pathinfo($file, PATHINFO_EXTENSION); $filename = $_FILES['userfile']['name']; $allowed = array('jpg', 'png', 'gif', 'bmp'); if($_FILES['userfile']['size'] > 10000) { die("File is too large!"); } if($ext != $allowed) { die("Invalid Image File. Possible hack attempt!"); } if(move_uploaded_file($_FILES['userfile']['tmp_name'], $dir)) { echo "File: ".$_FILES['userfile']['name']." has been uploaded to ".$dir."! "; } else { die("Error: ".$_FILES['userfile']['error']." "); } } This part is the problem if($ext != $allowed) { die("Invalid Image File. Possible hack attempt!"); } Quote Link to comment https://forums.phpfreaks.com/topic/295386-upload-script/ Share on other sites More sharing options...
QuickOldCar Posted April 10, 2015 Share Posted April 10, 2015 duplicate post answered here http://forums.phpfreaks.com/topic/295385-upload-script/ Quote Link to comment https://forums.phpfreaks.com/topic/295386-upload-script/#findComment-1508628 Share on other sites More sharing options...
Tom10 Posted April 10, 2015 Author Share Posted April 10, 2015 It said first time the admin blocked it? Quote Link to comment https://forums.phpfreaks.com/topic/295386-upload-script/#findComment-1508630 Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.