Re: PHP Upload Script - Files uploaded Corrupt

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On 8/17/06, *Ed K.* <ed@xxxxxxxxxx <mailto:ed@xxxxxxxxxx>> wrote:

    On Wed, 16 Aug 2006, Matthew Benjamin wrote:
     >
     > Can anyone help I have a php script that uploads files to a mysql
    database.
     > When it uploads the files all of the content in the file gets
    corrupted. Has
     > anyone expirienced this. I know I can't be the first person with the
     > problem. -- Help!!!  Please.
     >

    Are you escaping the data from the file?

    here would be a working php script:

           $fp=fopen($addfile,"r");
           $bvar=fread($fp,filesize($addfile));
           fclose($fp);
           $bvar=addslashes($bvar);
           $q="insert into table (file) values ('$bvar')";

    ed

    --
    fedora-list mailing list
    fedora-list@xxxxxxxxxx <mailto:fedora-list@xxxxxxxxxx>
    To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
    <https://www.redhat.com/mailman/listinfo/fedora-list>


...

-----

<form enctype="multipart/form-data" action="" method="POST">
    <!-- MAX_FILE_SIZE must precede the file input field -->
    <input type="hidden" name="MAX_FILE_SIZE" value="30000" />
    <!-- Name of input element determines name in $_FILES array -->
    Send this file: <input name="userfile" type="file" />
    <input type="submit" value="Send File" />
</form>


<?php
if(!empty($_FILES['userfile']))
{
  // make dir for the file and move it there
  @mkdir('./temp', 0777);
move_uploaded_file($_FILES['userfile']['tmp_name'], './temp/'.basename($_FILES['userfile']['name']));
// read the file and put it to the DB; use base64, <http://php.net/base64_encode> mysql_query("INSERT INTO table VALUES(0, 'a', 'b', 'c', '" . base64_encode(file_get_contents('./temp/'.basename($_FILES['userfile']['name']))) . "')"); 

  // delete the source file and temp directory
  unlink('./temp/'.basename($_FILES['userfile']['name']));
  rmdir('./temp');

  echo 'The file was successfully uploaded!<br />';
}
?>

-----

But why do you want to use a database for the files? To prevent
unauthorized downloading, you can disallow the access to the files and
send them to user also via PHP, see the comments of <http://php.net/header>.

Lauri

--
fedora-list mailing list
fedora-list@xxxxxxxxxx
To unsubscribe: https://www.redhat.com/mailman/listinfo/fedora-list
[Index of Archives]     [Older Fedora Users]     [Fedora Announce]     [Fedora Package Announce]     [EPEL Announce]     [Fedora Magazine]     [Fedora News]     [Fedora Summer Coding]     [Fedora Laptop]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Maintainers]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Legacy]     [Fedora Desktop]     [Fedora Fonts]     [ATA RAID]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [SSH]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Centos]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Tux]     [Yosemite News]     [Gnome Users]     [KDE Users]     [Fedora Art]     [Fedora Docs]     [Asterisk PBX]     [Fedora Sparc]     [Fedora Universal Network Connector]     [Libvirt Users]     [Fedora ARM]

  Powered by Linux