I get a file path to a user file and I want to make

Question

0

Asked: May 15, 20262026-05-15T10:01:53+00:00 2026-05-15T10:01:53+00:00

I get a file path to a user file and I want to make

0

I get a file path to a user file and I want to make sure that this path is to a valid existing user file and not to something bogus or a system file or something like that.

I know I can use file_exists to check that it exists, but I’m not sure how I should make sure that the file is in a certain sub-directory…

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-15T10:01:53+00:00

You should be aware of hard links and symbolic links. If you’re going to change the file, do a stat to check if it’s a regular file and its node count is 1.

$subdirToCheck = "/home/mysubdir/";
$file = "relativepath/userfile";
$absfile = realpath($file);
if ($absfile !== FALSE && file_exists($absfile) &&
        substr($absfile, 0, strlen($subdirToCheck)) == $subdirToCheck) {
    $ls = lstat($absfile);
    if (is_link($ls) || $ls["nlink"] > 1) {
        //abort
    }
    else {
        //do stuff
    }
}

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I get a file path to a user file and I want to make

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply