Yes you can.

The html that you use to create the form that you need to use can be created by CGI.pm, e.g.

#!/usr/local/bin/perl -w
# script name = upload_form.cgi
use strict;
use CGI;
$query = new CGI;

print $query->header;
print $query->start_html;
print $query->start_multipart_form(-action=>"image_writer.cgi"); #belo
+w
print $query->filefield(-name=>'file');
print $query->submit(-value=>'Upload File');
print $query->end_form;
print $query->end_html;

exit;
[download]

Note that you have to use the start_multipart_form or else your upload will fail.

The next bit comes straight out of the docs for CGI.pm. You might consider reading them and discover the difference between the upload and param methods.

#!/usr/bin/local/perl -w
# name image_writer.cgi

use CGI;
$query = new CGI;
$file = $query->param('file');
open IMAGE, ">/tmp/image";
while ($bytesread = read($file,$buffer,1024) ) { #treat as binary
    $total += $bytesread;    #add the bytesread to a total
        if ($bytesread > 2000000) { # no files larger than 2Meg, pleas
+e
        close IMAGE;
        $badboy = $ENV{'REMOTE_ADDR'};
        $time = scalar localtime;
        unlink ("/tmp/image"); #delete the file that's too large and l
+og the offense (below)
        die "$time: $badboy tried to upload a file that was too large"
+;
        }
    print IMAGE $buffer;
}    
exit;
[download]

That's about all there is to it. If you are using a Windows web-server, you'll have to modify where the file is saved, but it should work, otherwise. (there may be some minor problems with the code, but it's sound theoretically).

I'd advise against using strict in the script that actually takes the upload, as there are some versions of CGI.pm that have problems with uploads with strict on (seems to be a problem with symbolic references or some other nonsense).