sharemb Posted April 15, 2017 Share Posted April 15, 2017 hi,plz attention php expert, i am working on a php file uploading script and want to allow all file types without adding hundred and thousands of file type extensions script is live at sharemb.com Quote Link to comment https://forums.phpfreaks.com/topic/303713-file-uploading-scrip/ Share on other sites More sharing options...
requinix Posted April 15, 2017 Share Posted April 15, 2017 You don't have to do it manually - add all possible extensions with range("a", "zzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzzz")It that doesn't work, modify the script so it doesn't do any file type checking. Actually, first look to see whether there's an option to allow all files, and then if you can't find one you can start disabling code. Quote Link to comment https://forums.phpfreaks.com/topic/303713-file-uploading-scrip/#findComment-1545494 Share on other sites More sharing options...
Jacques1 Posted April 15, 2017 Share Posted April 15, 2017 If you want help with the code, we need to actually see the code. We don't have access to your server. Besides that, are you sure you understand the huge risks associated with unrestricted file uploads? What is your security concept? Even restricted uploads are typically full of vulnerabilities. You're removing even that last line of defense and putting it on a live server for the whole world to play with your application. This can end badly. Quote Link to comment https://forums.phpfreaks.com/topic/303713-file-uploading-scrip/#findComment-1545499 Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.