Good content takes time and effort to come up with.

Please consider supporting us by just disabling your AD BLOCKER and reloading this page again.

How To Upload File In PHP | StackCoder

Upload Image In PHP?

10th May 2020 6 mins read
Share On     Share On WhatsApp     Share On LinkedIn

Hello Amigos! In this article you will learn how to upload image in plain PHP.

This article covers

  1. Database Design To Store Product Data & File Upload Details
  2. HTML For File Upload
  3. DB Connection PHP Code
  4. Getting Image Upload & Other Fields Inserting Into Database Working
  5. Simple Validating For Form Fields
  6. Simple Validation For Image Uploads

I have hosted this in GitHub. Feel free to you use is any of your project Image Upload Demo


Basic PHP, Database & HTML knowledge.

I have written another article proper way to validate the file in PHP Proper Way To Validate MIME Type Of Files While Handling File Uploads In PHP. Don't miss it.

1) Database Design To Store Product Data & File Upload Details

First let me clear you few concepts, we can store the images in database as blob but we wont be doing that.

We will store the images in specific path of project. Why?

  1. By store images in database it will impact the database speed.
  2. It will soon bloat the size of database which requires larger space and may impact other serious problems

Following is the database design for our testing. As you see its very simple design. For the sake of example we have taken invoice as database name.

/** Creating database with name invoice */

/** Once we create we want to switch to invoice so that we can add products table */
USE `invoice`;

/** Products table to hold the products data */
CREATE TABLE `products` (
	`name` VARCHAR(30),
	`product_image` VARCHAR(255),

2) HTML For File Upload

Since we have only 2 fields in our database table products we will have only 2 fields in HTML form.

I wont be using bootstrap or anything for this it will be plain HTML code.

Following is my folder structure

Invoice Project Folder Structure

Invoice Project Folder Structure

uploads/products - This is the folder where we will be uploading the images to

db.php - File has the PHP database connection

index.php - File has our product form for the sake of simplicity

store_product.php - File where we handle storing our product to database and images to uploads/products folder

Make sure your form has enctype="multipart/form-data" attribute in index.php file. Else the files wont be passed in your HTML form.


<!DOCTYPE html>
<html lang="en">
    <meta charset="UTF-8">
    <meta name="viewport" content="width=device-width, initial-scale=1.0">
    <title>Invoice Demo</title>
        form{ width: 250px; margin: auto; }
        form input{ width: 100%; padding: 3px; }
    <form action="store_product.php" method="post" enctype="multipart/form-data">
            <label for="product_name">Product Name</label> <br>
            <input type="text" name="product_name" id="product_name">
            <label for="product_image"></label> <br>
            <input type="file" name="product_image" id="product_image">
            <input type="submit" value="Create Product">

The above form will look like the following from your browser

New Product Page | index.php

New Product Page | index.php

3) DB Connection PHP Code

You need to connect PHP with database so that PHP will get to know what to add in which database & tables.

Following is how your db.php file will look like. I am using PDO connection but you can go ahead and use mysqli function


$host           = 'localhost';
$db_name        = 'invoice';
$db_username    = 'root';
$db_password    = 'root';
$dsn            = 'mysql:host='. $host .';dbname='. $db_name;
$options        = [
                    PDO::ATTR_ERRMODE            => PDO::ERRMODE_EXCEPTION,
                    PDO::ATTR_EMULATE_PREPARES   => false,
try {
    $pdo = new PDO($dsn, $db_username, $db_password);
} catch (PDOException $e) {

4) Getting Image Upload & Other Fields Inserting Into Database Working

Once you fill the form you need to save it. Our form redirects to store_product.php file. Now you need to add the following PHP code code handle the other field data as well as image.

I will explain most of the stuff in comments, so kindly bear with me :)

When you do print_r($_FILES['product_image']); you will be able to see the image details as shown in the following code which will help you to debug and even play around images

    [name] =>
    [type] => image/jpeg
    [tmp_name] => /Applications/MAMP/tmp/php/php4TyPHk
    [error] => 0
    [size] => 12593

The following is the code snippet to add the product details in database


require_once 'db.php';

    $product_name   = $_POST['product_name'];

    /** I am using pathinfo to fetch the details of the PHP Image */
    $file_name = $product_image['name'];
    $file_size = $product_image['size'];
    $file_tmp = $product_image['tmp_name'];
    $pathinfo = pathinfo($file_name);
    /** Since I want to rename the image I need its extension
     * which will be obtained with above $phpinfo variable
     * */
    $extension = $pathinfo['extension'];
    /** generate random inage name */
    $new_image_name = rand(0, 10000000).time().md5(time()).'.'.$extension;
    move_uploaded_file($file_tmp, './uploads/products/'. $new_image_name);
    $product = $pdo->prepare("
        INSERT INTO 
            `products` (`name`, `product_image`)
            (:product_name, :product_image)
        ':product_name'     => $product_name,
        ':product_image'    => $new_image_name,

    if ($product) {
        echo 'Product added successfully';

What if the image is not added and product name is not added? A dummy data will be stored in our database. This is not what we want. So lets do some validation of the same

5) Simple Validating For Form Fields

We can simply add the following code to validate the form fields and then return the errors to index.php file


require_once 'db.php';

    /** array variable to hold errors */
    $errors = [];

    $product_name   = $_POST['product_name'];
    $product_image  = $_FILES['product_image'];
    /** Add form validation */
    if (empty($product_image['name'])) {
        $errors[] = 'Product image required';
    if (empty($product_name)) {
        $errors[] = 'Product name required';
    if (count($errors) > 0) {
        /** Add all the errors to session and then display in frontend */
        $_SESSION['errors'] = $errors;
        header('Location: index.php');

    /* Earlier image uploading & database saving code */


index.php to display errors

/** Dont forget to start your session */
<!DOCTYPE html>
<html lang="en">
        /** Get all the errors from session */
        $errors = $_SESSION['errors'];
        /** After storing the errors in $errors unset from session 
         *  We need to do this so that when I refresh the page in index.php it should be blank
            foreach($errors as $error){
                echo '<p>'. $error .'</p>';
    <form action="store_product.php" method="post" enctype="multipart/form-data">
        <!-- Form fields -->

6) Simple Validation For Image Uploads

Okay now we have simple validations of the form fields now we need to strictly check the image validation also

Image validations

  1. File Exists
  2. Check if the product image is uploaded image
  3. Restrict image size to 1MB - If more then 1 MB then throw error
  4. Only allow jpeg, jpg, png, svg, webp images

/** I am using pathinfo to fetch the details of the PHP Image */
$file_name          = $product_image['name'];
$file_size          = $product_image['size'];
$file_tmp           = $product_image['tmp_name'];
$pathinfo           = pathinfo($file_name);
$extension          = $pathinfo['extension'];
$image_extensions   = ['jpeg', 'jpg', 'png', 'svg', 'webp'];

/** File strict validations */

/** File exists */
    $errors[] = 'File your trying to upload not exists';

/** Check if the was uploaded only */
    $errors[] = 'File not uploaded properly';

/** Check for the image size 1024 * 1024 is 1 MB & 1024 KB */
if($file_size > (1024 * 1024)){
    $errors[] = 'Uploaded image is greater than 1MB';

/** Check image extensions */
if(!in_array($extension, $image_extensions)){
    $errors[] = 'Image allowed extensions '. implode(', ', $image_extensions);

if (count($errors) > 0) {
    $_SESSION['errors'] = $errors;
    header('Location: index.php');


Hope you got to know few basic things.

I have uploaded the whole project in GitHub repository, find it here Invoice Project Demo

Author Image

Channaveer Hakari

I am a full-stack developer working at WifiDabba India Pvt Ltd. I started this blog so that I can share my knowledge and enhance my skills with constant learning.

Never stop learning. If you stop learning, you stop growing