permissions & 128)) { header($_SERVER["SERVER_PROTOCOL"]." 403 Forbidden", true, 403); include_once($_SERVER["DOCUMENT_ROOT"]."/errors/403.php"); include_once($COMMONS."/footer.php"); die(); } display_header("Upload a file."); if(isset($_POST["submit"])) { $uploadDir = '/srv/http/assets/upload/'; $firstDir = bin2hex(random_bytes(16)); $secondDir = bin2hex(random_bytes(16)); $filename = bin2hex(random_bytes(16)); $extension = pathinfo($_FILES['userfile']['name'], PATHINFO_EXTENSION);; $combinedPath = $firstDir."/".$secondDir."/".$filename.".".$extension; mkdir($uploadDir.$firstDir, 0774); mkdir($uploadDir.$firstDir."/".$secondDir, 0774); echo "
"; if (move_uploaded_file($_FILES['userfile']['tmp_name'], $uploadDir.$combinedPath)) { echo "File is valid, and was successfully uploaded.\n"; printf("location: https://assets.zdenekborovec.cz/upload/%s", $combinedPath); } else { echo "File upload failed.\n"; } echo ""; } ?>