Reply to Re: Option to configure dangerous extensions

class.upload.php

class.upload.php is a powerful and mature PHP class to manage uploaded files, and manipulate images in many ways. The script is available under a GPL license.

more info about the class

Reply to Re: Option to configure dangerous extensions

Re: Option to configure dangerous extensions new!

# Reply

by colin, 11 years, 9 months ago

1. You can't rely on file extensions. Instead of blacklisting extensions, you can blacklist MIME types, using allowed and forbidden.

2. It is not possible with the class as it is written now. But this should be doable in the upcoming compete rewrite of the class. That said, you can remove most of the "dangerous checking" if you wish (see no_script for instance)Reply

Name *
Email
Title *
Text *
Enter the code displayed on the image: Click on the image to generate another one if it is hard to read it. The case is important

verot.net

quality web development

Overview

Download it!

Docs and support

Help out!

class.upload.php

Reply to Re: Option to configure dangerous extensions

Your reply