myvesta/web/file_manager/upload_file.php

<?php

// Define a destination
$targetFolder = '/home/admin/'; // Relative to the root

$verifyToken = md5('unique_salt' . $_POST['timestamp']);

if (!empty($_FILES) && $_POST['token'] == $verifyToken) {
	$tempFile = $_FILES['Filedata']['tmp_name'];
	$targetPath = $targetFolder;
	$targetFile = rtrim($targetPath,'/') . '/' . $_FILES['Filedata']['name'];
	
	// Validate the file type
	//$fileTypes = array('jpg','jpeg','gif','png'); // File extensions
	//$fileParts = pathinfo($_FILES['Filedata']['name']);
	
	//if (in_array($fileParts['extension'],$fileTypes)) {
		move_uploaded_file($tempFile,$targetFile);
		echo '1';
	//} else {
	//	echo 'Invalid file type.';
//	}
}

?>