How to check the Type and Size before File Uploading in PHP ? Last Updated : 13 Feb, 2024 Comments Improve Suggest changes Like Article Like Report In PHP, it's essential to validate file types and sizes before allowing users to upload files to a server. This helps prevent potential security vulnerabilities and ensures that only allowed file types and sizes are accepted. PHP provides various methods to perform these validations, including checking file extensions, MIME types, and file sizes. ApproachChecking File TypeDetermine acceptable file extensions or MIME types.Use pathinfo( ) function to extract the file extension.Compare the file extension or MIME type against the list of allowed types.Checking File SizeDetermine the maximum allowed file size.Use $_FILES superglobal array to access the uploaded file's size.Compare the file size against the maximum allowed size.Syntax:// Define allowed file types and maximum file size$allowedTypes = array('jpg', 'jpeg', 'png', 'gif');$maxFileSize = 2 * 1024 * 1024; // 2MB// Get file details$fileName = $_FILES['file']['name'];$fileSize = $_FILES['file']['size'];$fileType = strtolower(pathinfo($fileName, PATHINFO_EXTENSION));// Check file typeif (!in_array($fileType, $allowedTypes)) { echo "Only JPG, JPEG, PNG, and GIF files are allowed.";}// Check file sizeif ($fileSize > $maxFileSize) { echo "File size exceeds the maximum limit of 2MB.";}// If both checks pass, proceed with file uploadExplanationDefined allowed file types (jpg, jpeg, png, gif) and maximum file size (2MB).Retrieved file details using $_FILES['file'] array.Checked if the file type is allowed using in_array() function.Checked if the file size is within the maximum limit using a simple comparison.If both checks pass, the code proceeds with file upload.Difference between File Type and SizeChecking File TypeChecking File SizeVerify file extensions or MIME types against a predefined listCompare the file size against the maximum allowed sizeUse functions like pathinfo() or MIME type detection to determine file typeAccess file size information using $_FILES superglobal arrayPrevents uploading of disallowed file typesPrevents uploading of excessively large filesUsageSecurity: File type and size validation help prevent security vulnerabilities such as file upload attacks or denial of service attacks.User Experience: Proper validation provides feedback to users about allowed file types and sizes, improving the user experience. Comment More infoAdvertise with us Next Article How to check the Type and Size before File Uploading in PHP ? P pankaj_gupta_gfg Follow Improve Article Tags : PHP WebTech-FAQs PHP-QnA Similar Reads PHP Tutorial PHP is a widely used, open-source server-side scripting language primarily designed for web development. It is embedded directly into HTML and generates dynamic content on web pages, making it essential for building data-driven websites. It allows developers to handle database interactions, session 9 min read Top 60+ PHP Interview Questions and Answers -2025 PHP is a popular server-side scripting language, widely known for its efficiency in web development and versatility across various platforms. PHP is extensively utilized by top companies such as Facebook, WordPress, Slack, Wikipedia, MailChimp, and many more due to its robust features and high perfo 15+ min read PHP Introduction PHP stands for Hypertext Preprocessor. It is an open-source, widely used language for web development. Developers can create dynamic and interactive websites by embedding PHP code into HTML. PHP can handle data processing, session management, form handling, and database integration. The latest versi 8 min read Version Control Systems Version Control Systems (VCS) are essential tools used in software development and collaborative projects to track and manage changes to code, documents, and other files. Whether you're working alone or as part of a team, version control helps ensure that your work is safe, organized, and easy to co 7 min read PHP Arrays Arrays are one of the most important data structures in PHP. They allow you to store multiple values in a single variable. PHP arrays can hold values of different types, such as strings, numbers, or even other arrays. Understanding how to use arrays in PHP is important for working with data efficien 5 min read PHP | Functions A function in PHP is a self-contained block of code that performs a specific task. It can accept inputs (parameters), execute a set of statements, and optionally return a value. PHP functions allow code reusability by encapsulating a block of code to perform specific tasks.Functions can accept param 8 min read Difference between HTTP GET and POST Methods HTTP (Hypertext Transfer Protocol) specifies a collection of request methods to specify what action is to be performed on a particular resource. The most commonly used HTTP request methods are GET, POST, PUT, PATCH, and DELETE. This article covers the 2 most common HTTP request methods, i.e. the GET 4 min read PHP Data Types In PHP, data types define the kind of value a variable can hold. PHP is a loosely typed language, meaning you don’t need to declare the data type of a variable. It is automatically assigned based on the value. But it is important to understand data types because it is important for writing reliable, 4 min read PHP Operators In PHP, operators are special symbols used to perform operations on variables and values. Operators help you perform a variety of tasks, such as mathematical calculations, string manipulations, logical comparisons, and more. Understanding operators is essential for writing effective and efficient PH 8 min read Creating a Registration and Login System with PHP and MySQL A registration and login system is a fundamental component of many web applications and provides user authentication and security. This allows users to create an account log in with their login credentials and manage their session securely. By using PHP for server-side scripting and MYSQL for databa 12 min read Like