Answer
PHP handles uploads via $_FILES. Security concerns: MIME validation, size limits, avoiding directory traversal, storing outside webroot, renaming files, and sanitizing filenames.
Quick Answer
PHP file uploads use multipart form data. Access via FILES superglobal. Security concerns: validate file type using mime_type (not extension), check file size, rename files before saving (never use original filename), store outside web root, scan for malware. Use move_uploaded_file() (not copy) to safely move temp files. Restrict allowed extensions at web server level too.
S
SugharaIQ Editorial Team
Verified Answer
This answer has been peer-reviewed by industry experts holding senior engineering roles to ensure technical accuracy and relevance for modern interview standards.
Want to bookmark, take notes, or join discussions?
Sign in to access all features and personalize your learning experience.
Source: SugharaIQ