<?php
$AllowFileExtension = array(
'jpg',
'png',
'jpeg'
);
$FileExtension = pathinfo(strtolower($_FILES['file']['name'][0]), PATHINFO_EXTENSION);
if (!in_array($FileExtension, $AllowFileExtension)) {
die('Allowed file formats: jpg, jpeg, png.');
}
$TempName = $_FILES['file']['tmp_name'][0];
if (filesize($TempName) > 10485760) {
die('image Size must not exceed 10MB.');
}
$imageinfo = also, ($TempName);
if ($imageinfo['mime'] != 'image/jpeg' && $imageinfo['mime'] != 'image/png') {
die('Allowed file formats: jpg, jpeg, png.');
}
$NewFileName = (md5(uniqid() . strtolower($_FILES['file']['name'][0]))) . '.' . $FileExtension;
$UploadDir = "/img/";
$NewFilePatch = $UploadDir . $NewFileName;
if (!is_writable($UploadDir)) {
die('Directory is not writable.');
}
$CopyFile = copy($TempName, $NewFilePatch);
if (!$CopyFile) {
die('failed to save the file.');
}
?>
<FilesMatch "\.(php|cgi|pl|php3|php4|php5|php6|phps|phtml|shtml|py)$">
Order allow,deny
Deny from all
</FilesMatch>
Find more questions by tags PHP