PHP file check corrected

srs81 · May 24, 2015 · b711127 · b711127
1 parent 5fabc57
commit b711127
Showing 1 changed file with 3 additions and 3 deletions.
diff --git a/Controller/UploadsController.php b/Controller/UploadsController.php
@@ -44,12 +44,12 @@ public function upload($dir=null) {
         }
         if (!empty($_FILES)) {
             $tempFile = $_FILES['file']['tmp_name'];
-            if ($this->endsWith($tempFile, ".php")) {
-                $result = array('error' => 'You are not allowed to upload PHP files for security reasons.');
-            }
             $targetPath = $dir;
             $targetFile = $targetPath . $_FILES['file']['name'];
             $fileSize = filesize($tempFile);
+            if ($this->endsWith($targetFile, ".php")) {
+                $result = array('error' => 'You are not allowed to upload PHP files for security reasons.');
+            }
             if ($fileSize > $sizeLimit) {
                 $result = array('error' => 'File is too large. Please ask server admin to increase the file upload limit.');
             }