This seems to work
function override_wpcf7_upload_tmp_dir($type) {
$type = [
‘url’ => $type[‘url’],
‘dir’ => WPCF7_UPLOADS_TMP_DIR
];
return $type;
}
add_filter( ‘wpcf7_upload_dir’, ‘gc_wpcf7_upload_tmp_dir’, 10);
to do functions.php
define(‘WPCF7_UPLOADS_TMP_DIR’,’);
Can you please provide filter for this. Not able to move uploaded files from outside of website root folder introduces more security concerns!
By keeping it inside of documentroot directory file is publicly accessible allowing for remote execution.
For proper security around publicly uploaded files I believe those should be stored in a location that does not allow remote execution or access. Files should be served thru proxy (if uploaded files need to be accessed publicly)
