21,893
社区成员




<form name="uploadform" method="post" action="upload.php" enctype="multipart/form-data">
<input type="file" name="upload" value="上传" /> <!-- 点击上传,选择好文件后,路径会自己显示出来的 -->
<input type="submit" value = "Upload"> <!-- 单击Upload就上传了,在upload页面里处理 -->
</form>
$uploaddir = '/var/www/uploads/';
$uploadfile = $uploaddir . basename($_FILES['upload']['name']);
echo '<pre>';
if (move_uploaded_file($_FILES['upload']['tmp_name'], $uploadfile))
{
echo "File is valid, and was successfully uploaded.\n";
}
else
{
echo "Possible file upload attack!\n";
}
echo 'Here is some more debugging info:';
print_r($_FILES);
print "</pre>";
//php提供的目录操作函数
$handle=@opendir($basedir . $wdir);
while ($file = @readdir($handle))
{
}
//shell
//最好在linux系统下
//ls grep 等等.
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML>
<HEAD>
<TITLE> New Document </TITLE>
<META NAME="Generator" CONTENT="EditPlus">
<META NAME="Author" CONTENT="">
<META NAME="Keywords" CONTENT="">
<META NAME="Description" CONTENT="">
</HEAD>
<BODY>
<form name="uploadform" method="post" action="upload.php" enctype="multipart/form-data">
<input type="file" name="upload" value="上传" />
</form>
</BODY>
</HTML>
<?php
$upload = $_FILES['upload'];
$destlocation = '上传文件存放地址';
if(move_upload_file($upload['tmp_name'],$destlocation))
{
echo '上传成功';
}
else
{
echo '上传失败';
}
?>