Show DevBest File Uploader Website

[Jerry]

So, I just created a File Uploader based on a PHP Code, here it is;

If you want to see more about this, go

You must be registered for see links

.

 

[RastaLulz]

Pro tip, don't allow PHP files. Also, don't overwrite existing files.

 

[Ecko]

Pro tip, don't allow PHP files. Also, don't overwrite existing files.

Nothing wrong with allowing people to upload it, as long as you there's no attempt to execute it when downloading it. IE - take a look at this old filemanager:

You must be registered for see links

(devbest:demo is user/pw). The PHP script would never execute because of the way it is handled when retrieving the file:

if($act == 'getfile'){
        $fname = trim($_GET['file']);
        $file_path = ROOT.CUR_DIR.'/'.$fname;

        if(strlen($fname) < 1)
            message('Invalid Link', 'Error');

        if(!is_file($file_path))
            message('Invalid LInk', 'Error');
          
        set_time_limit(0);
        ignore_user_abort();
      
        if(@getimagesize($file_path) !== false){
            header('Content-Type: '.mime_content_type($file_path));
            die(file_get_contents($file_path));
        }

 

[Dono]

Very nice, i will use this a lot.

 

[cxdy]

Looks gay, Why would someone use this over Mega/Mediafire

What's gay about it? It's just a project, probably to allow him to learn PHP and expand his knowledge.

o/t
Looks great, OP. Maybe try making your alerts smaller, no reason to have them stretch across the whole page, and yeah, make sure you can't execute PHP files.