我正在使用此脚本上传文件。自从我第一次尝试以来,我没有对filetype进行任何检查。我使用的是Ubuntu,并在php.ini文件中将文件上传设置为'on'。但是我仍然无法上传文件。通过php上传文件时出错
<?php
if(isset($_POST['send']))
{
$uploaddir = "/home/harbhag/Desktop/";
$uploadfile = $uploaddir . basename($_FILES['userfile']['name']);
echo $uploadfile;
if (move_uploaded_file($_FILES['userfile']['tmp_name'], $uploadfile)) {
echo "File is valid, and was successfully uploaded.\n";
} else {
echo "Possible file upload attack!\n";
}
}
?>
<html>
<form enctype="multipart/form-data" action="upload.php" method="POST">
<!-- MAX_FILE_SIZE must precede the file input field -->
<input type="hidden" name="MAX_FILE_SIZE" value="30000000" />
<!-- Name of input element determines name in $_FILES array -->
Send this file: <input name="userfile" type="file" />
<input type="hidden" name="send" value="send" />
<input type="submit" value="Send File" />
</form>
</html>
什么都在'$ uploaddir'目录(写)权限? – helle 2011-03-05 09:24:54
你有输出吗? – alexn 2011-03-05 09:26:07
@helle,自从我的主目录以来,我对$ uploaddir具有写权限。 @alexn,我得到了代码中写的“可能的文件上传攻击”。但是我没有收到任何消息,说明错误的可能原因。 – hsinxh 2011-03-05 09:29:57