I have this script
index.php
<form enctype="multipart/form-data" action="uploader.php" method="POST">
<input type="hidden" name="MAX_FILE_SIZE" value="90000000" />
Choose a file to upload: <input name="uploadfile" type="file" /><br />
<input type="submit" value="Upload File" />
</form>
uploader.php
<?php
// In PHP versions earlier than 4.1.0, $HTTP_POST_FILES should be used instead
// of $_FILES.
$uploaddir = '/home3/kiwis/public_html/HAN';
$uploadfile = $uploaddir . basename($_FILES['userfile']['name']);
echo '<pre>';
if (move_uploaded_file($_FILES['userfile']['tmp_name'], $uploadfile)) {
echo "File is valid, and was successfully uploaded.\n";
} else {
echo "Possible file upload attack!\n";
}
echo 'Here is some more debugging info:';
print_r($_FILES);
print "</pre>";
?>
But i get this error
Possible file upload attack!
Here is some more debugging info:Array
(
[uploadfile] => Array
(
[name] => 4.jpg
[type] => image/pjpeg
[tmp_name] => /tmp/phpF5FLCA
[error] => 0
[size] => 126091
)
)
What could be wrong?
