Home/ Questions/Q 9228301
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-18T05:17:17+00:00

My website having uploading profile image section for members and i’ve used the following

  • 0

My website having uploading profile image section for members and i’ve used the following code.

Form Code

<form action="send.php" method="post" enctype="multipart/form-data" name="send" id="send">
    Your Image : <input type="file" name="pic" id="pic"/>
    <input type="Submit" name="Submit" value="Submit"/>
</form>

PHP Code send.php

$ImageName = $_FILES[pic][name]; 
if(!empty($ImageName) && $_FILES[pic][type] == "image/jpeg" || $_FILES[pic][type] == "image/png" || $_FILES[pic][type] == "image/gif" || $_FILES[pic][type] == "image/bmp"){
    $t = time();
    $NewImageName = "$t$ImageName"; // image new name
    copy($_FILES[pic][tmp_name], "users/$NewImageName"); // copy it to directory
} else {
    echo "no upload done";
}

But someone by using firefox extension manage to bypass it and uploaded php file
Who uploaded the file to my website sent me message said “you only check for type !”
and said ” i used firefox extension that can fake input fields and passed PHP file “.

So my question how do i protect my image upload form of the above code ? ~ thanks

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    First I don’t think that’s is the valid format to read $_FILE variable

    $ImageName = $_FILES[pic][name];

    You should use 

    $ImageName = $_FILES['pic'][name];

    Then I think it is improbable that someone can fake a server side check.

    Try to hack this, I use a *PATHINFO_EXTENSION* as mentioned in PHP.net Manual

    $validFormat = array("jpg","JPG","jpeg","JPEG","png","PNG","gif","GIF");    
$path = pathinfo($_FILES['pic']['name'], PATHINFO_EXTENSION);
if(in_array($path, $validFormat)){
// it's okay
}else{
// Error
}

    I’m working with this code since I discovered pathinfo a while ago and nobody hack it..

    • 0