Zend Exam 200-710 Topic 9 Question 30 Discussion

Actual exam question for Zend's 200-710 exam

Question #: 30
Topic #: 9

An HTML form contains this form element:

When this form is submitted, the following PHP code gets executed:

move_uploaded_file(

$_FILES['myFile']['tmp_name'],

'uploads/' . $_FILES['myFile']['name']

);

Which of the following actions must be taken before this code may go into production? (Choose 2)

ACheck with is_uploaded_file() whether the uploaded file $_FILES['myFile']['tmp_name'] is valid

BSanitize the file name in $_FILES['myFile']['name'] because this value is not consistent among web browsers

CCheck the charset encoding of the HTTP request to see whether it matches the encoding of the uploaded file

DSanitize the file name in $_FILES['myFile']['name'] because this value could be forged

EUse $HTTP_POST_FILES instead of $_FILES to maintain upwards compatibility

Show Suggested Answer

Suggested Answer: B, D

by Hillary at Jun 01, 2022, 04:35 AM

Limited Time Offer

25%

Off

Contribute your Thoughts:

Submit Cancel

Currently there are no comments in this discussion, be the first to comment!