class.upload.php
class.upload.php is a powerful and mature PHP class to manage uploaded files, and manipulate images in many ways. The script is available under a GPL license.
class.upload.php is a powerful and mature PHP class to manage uploaded files, and manipulate images in many ways. The script is available under a GPL license.
Love your script buddy it is fantastic. Just wondering if you had heard of or included a fix in to combat the security issue in GIF images for PHP? Check out the link below:
http://www.phpclasses.org/blog/post/67-PHP-security-exploit-with-GIF-images.html
Thanks
Steve
As for the class, depending on your server configuration, it does a lot of checks on the uploaded file to determine its MIME type. It is using Fileinfo PECL extension, UNIX file() command, MIME magic, and getimagesize(), in that order, which should catch malicious files.
Then, you can instruct the class to accept only some MIME types, or refuse some.