Re: Help with file upload

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



His is the new code:
<?php
if (is_uploaded_file($_FILES['ufile1']['tmp_name'])) {
copy($_FILES['ufile1']['tmp_name'], ".");
echo "$ufile1_name ";
echo "DONE";
echo " ";
print_r($_FILES);
} else {
echo "Possible file upload attack. Filename: " . $_FILES['ufile1']['name'];
echo " ";
print_r($_FILES);
}
?>


Bunmi

Bunmi Akinmboni wrote:

Thanks John,
I had done it before and still tried it again now. This is what I get:

Warning: copy(.): failed to open stream: Is a directory in /home/ayserve/public_html/fu/fuprocess.php on line 6
ayservenet.jpg DONE Array ( [ufile1] => Array ( [name] => ayservenet.jpg [type] => image/pjpeg [tmp_name] => /tmp/php1tARiu [error] => 0 [size] => 3030 ) )


Bunmi

John W. Holmes wrote:

Bunmi Akinmboni wrote:

Pls Help.
I have done a lot of reading prior to this yet I just can't seem make it work. I wrote an upload program as seen below but the response I got was:


Possible file upload attack. Filename: ayservenet.jpg Array ( [ufile1] => Array ( [name] => ayservenet.jpg [type] => image/pjpeg [tmp_name] => /tmp/phpIMEhdh [error] => 0 [size] => 3030 ) )


[snip]

if (is_uploaded_file($_FILES['ufile1']['name'])) {
copy($_FILES['ufile1']['name'], ".");
echo "$ufile1_name ";
echo "DONE";
echo " ";
print_r($_FILES);
} else {
echo "Possible file upload attack. Filename: " . $_FILES['ufile1']['name'];
echo " ";
print_r($_FILES);
}
?>



You should pass $_FILES['ufile1']['tmp_name'] to is_uploaded_file().



-- PHP Database Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php


[Index of Archives]     [PHP Home]     [PHP Users]     [Postgresql Discussion]     [Kernel Newbies]     [Postgresql]     [Yosemite News]

  Powered by Linux