[Resolved] file path on ie and mozilla

felipe_lopes

Hi there!!

I have a simple form to send me the path of a file:

<?php

echo $_POST['path'];

?>
<FORM enctype="multipart/form-data" METHOD=POST ACTION="<? echo $_SERVER['PHP_SELF']?>">
<INPUT TYPE="file" NAME="path"><INPUT TYPE="submit">
</FORM>

The problem is, when I run this program on IE, it outcomes the path as I intended, BUT on Mozilla it outcomes just the file name, and I need the whole path....

Any idea on how to overcome this?

Thanx in Advance

Weedpacket

-?!
You mean that works in IE?

felipe_lopes

Yep....On IE works fine....

It shows on IE:
C:\wfwerf\fwefefwef\fwef\hi.exe

That's what I need...The whole path...

On Mozilla it shows only:
hi.exe

felipe_lopes

No thoughts on this?

goldbug

Sounds to me like mozilla is actually trying to protect the information of the browser user, and IE isn't. First of all, why would you need to know what path the uploaded file came from? Secondly, why should a user want to give you that information?

(EDIT)
Some light reading:

RFC 2183 , specifically section 2.3 "The Filename Parameter"
Specifically:

The receiving MUA SHOULD NOT respect any directory path information
that may seem to be present in the filename parameter. The filename
should be treated as a terminal component only.

Also, the section "Security Considerations"

felipe_lopes

Nevermind...The solution I had in mind won't solve my problem..

Thanx