php upload q
php upload q
Out of context: Reply #5
- Started
- Last post
- 9 Responses
- kappa0
As long as the file extension isn't '.php' (or however you have apache configured) when you save the file, it won't parse the php anyway, so what's the trouble?
If you really want to make sure nobody is uploading PHP scripts, match "<?php" on the uploaded file contents, if it finds a match, reject the upload.