What potential issue is highlighted in the provided PHP code for a file upload system?

The potential issue in the provided PHP code is the lack of validation on the uploaded file type. This can lead to security vulnerabilities such as allowing users to upload malicious files. To solve this issue, you should implement file type validation to only allow specific file types to be uploaded.

// Validate file type before uploading
$allowedFileTypes = [&#039;jpg&#039;, &#039;jpeg&#039;, &#039;png&#039;, &#039;gif&#039;];
$uploadedFileType = pathinfo($_FILES[&quot;fileToUpload&quot;][&quot;name&quot;], PATHINFO_EXTENSION);

if (!in_array($uploadedFileType, $allowedFileTypes)) {
    echo &quot;Sorry, only JPG, JPEG, PNG &amp; GIF files are allowed.&quot;;
} else {
    // Upload file logic here
}

Keywords

file upload PHP code security vulnerability file extension file type detection

What potential issue is highlighted in the provided PHP code for a file upload system?

Keywords

Related Questions