doucha5080 2016-06-25 10:20
浏览 50
已采纳

PHP文件上传大小和类型不起作用

Actually, i've developed a CMS to post into my website through.. For post image i want to set limit of 500KB and only GIF,JPEG,JPG and PNG foormats are allowed..This code executes successfully and the alert is appeared too. but when the image is uploaded containing allowed format and size, it shows the alert message again..my using of exit();function is correct here?? The HTML is:

<div class="form-container">
   <form method="post" action="publish_post.php" enctype="multipart/form-data">
     <input class="inputs" type="text" name="p_title" placeholder="What's the post title"/>
     <input class="inputs" type="text" name="p_author" placeholder="Who's the post author"/>
     <select class="input" name="p_category" size="1" />
        <option value="null">Select post category</option>
        <option value="softwares">Softwares</option>
        <option value="tips & tricks">Tips & tricks</option>
        <option value="wallpapers">Wallpapers</option>
        <option value="walpapers_more">Walpapers_more</option>
     </select>
     <textarea name="p_content" placeholder="What's the post content"></textarea>
     <textarea name="p_misc" placeholder="Enter an html code"></textarea>
     <textarea name="p_video" placeholder="Enter an embed code"></textarea>
     </br>
     <div class="upload">
     <input type="file" name="p_image" title="Pick an image for post"/>
     </div></br>
      <span style="margin-left: 5px; color: gray; font-family: sans-serif; font-size: .8em; ">max. size 5MB
      </span></br></br>
     <input type="submit" name="pub" value="Publish"/>
     <input type="button" name="cancel" value="Cancel" onclick="window.open('dashboard','_self');"/>
   </form>
 </div>

The PHP is:

<?php
if(isset($_POST['pub'])){

    $category = mysqli_real_escape_string($con,$_POST['p_category']);
    $author = mysqli_real_escape_string($con,$_POST['p_author']);
    $title = mysqli_real_escape_string($con,$_POST['p_title']);
    $content = mysqli_real_escape_string($con,$_POST['p_content']);
    $image_name = $_FILES['p_image']['name'];
    $image_type = $_FILES['p_image']['type'];
    $image_size = $_FILES['p_image']['size'];
    $image_tmp = $_FILES['p_image']['tmp_name'];
    $date = date("M,d,Y");
    $misc = $_POST['p_misc'];
    $video = $_POST['p_video'];

    if($image_type != "jpg" && $image_type != "png" && $image_type != "gif" && $image_type != "jpeg" && $image_size>500000)
    {
        echo "<script>alert('Image size is larger or invlaid format');</script>";
        exit();
    }

$query = "INSERT INTO `me`(`post_category`, `post_author`, `post_title`, `post_content`, `post_image`, `post_date`, `post_misc`, `post_video`) VALUES ('$category','$author','$title','$content','$image_name','$date','$misc','$video')";

    if(mysqli_query($con,$query))
    {
    move_uploaded_file($image_tmp,"images/$image_name");
    header("location:dashboard?done2=done2.png");
    }
  } 
?>
  • 写回答

4条回答 默认 最新

  • dtjbcda841554 2016-06-25 11:28
    关注

    // for image type

    $expensions= array("jpeg","jpg","png","gif");
if(in_array($image_type,$expensions)=== false){
    echo "<script>alert('Image size is larger or invlaid format');</script>";
    exit();
}

    // for image size

    if($image_size  > 500000){
    echo "<script>alert('Image size is larger or invlaid format');</script>";
    exit();
}

    i hope it will be helpful

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论
查看更多回答(3条)

报告相同问题?

悬赏问题

  • ¥15 Python3.5 相关代码写作
  • ¥20 测距传感器数据手册i2c
  • ¥15 RPA正常跑,cmd输入cookies跑不出来
  • ¥15 求帮我调试一下freefem代码
  • ¥15 matlab代码解决,怎么运行
  • ¥15 R语言Rstudio突然无法启动
  • ¥15 关于#matlab#的问题:提取2个图像的变量作为另外一个图像像元的移动量,计算新的位置创建新的图像并提取第二个图像的变量到新的图像
  • ¥15 改算法,照着压缩包里边,参考其他代码封装的格式 写到main函数里
  • ¥15 用windows做服务的同志有吗
  • ¥60 求一个简单的网页(标签-安全|关键词-上传)