How to Fix the “Sorry, This File Type Is Not Permitted for Security Reasons” Error in WordPress

Posted on Latest In How-To Geek / Technology / WordPress

Encountering the “Sorry, you are not allowed to upload this file type” error message when trying to upload media files in WordPress can be frustrating, but it’s usually a solvable issue. This error occurs because WordPress has security measures in place to prevent potentially harmful file types from being uploaded to your website. Here’s how you can troubleshoot and fix this issue:

1. Check File Type and Extension:

  • Understanding File Extensions: File extensions are those short identifiers added to the end of filenames, like “.jpg” for images or “.pdf” for documents. WordPress recognizes specific extensions to determine the file type being uploaded.
  • Valid File Types: By default, WordPress allows commonly used and safe file types like:
    • Images: .jpg, .png, .gif
    • Audio: .mp3, .wav
    • Video: .mp4, .mov
    • Documents: .pdf, .docx
  • Double-check the Extension: Ensure the file you’re uploading has one of these supported extensions. If it has an uncommon extension, you might need to convert the file to a supported format before uploading.

2. File Naming: Keeping Uploads Smooth

File naming might seem like a minor detail, but it can sometimes trip up the WordPress upload process. Here’s a deeper dive into how file naming conventions can impact uploads and best practices to ensure smooth sailing:

  • Characters to Avoid:
    • Special characters: These include symbols like @, #, $, %, ^, &, *, and ( ). While some special characters might be okay, it’s best to avoid them altogether to eliminate any potential conflicts.
    • Spaces: While spaces seem harmless, they can cause issues depending on how your server interprets file paths. Replace spaces with underscores (_) for better compatibility.
    • Non-breaking spaces ( ): These invisible characters can also create problems. Use regular spaces instead.
  • Capitalization: Technically, WordPress isn’t case-sensitive when it comes to filenames. However, some operating systems are case-sensitive. To ensure consistency across different systems, it’s recommended to use lowercase letters for filenames.
  • Descriptive Naming: While keeping it simple is important, using descriptive names can help you and others easily identify the file content later. Strike a balance between simplicity and clarity.

Here are some examples of good and bad file naming practices:

  • Bad:
    • weird_file#1.jpg (uses special characters and spaces)
    • fancyBackground Photo.JPG (mixed case)
  • Good:
    • blue-wallpaper.jpg (descriptive, lowercase, uses underscores)
    • product-image-123.png (clear, uses hyphens)

By following these tips, you can create filenames that are both user-friendly and upload-friendly in WordPress.

Bonus Tip: Consider using a consistent naming scheme for your uploaded files. This can help you organize your media library more effectively and make it easier to find specific files later. For example, you could use a format like category-name-descriptive-filename.extension.

3. Plugin Conflicts:

  • Potential Culprits: If you have any security plugins or plugins related to media handling installed on your WordPress site, they might be interfering with the file upload process. These plugins might have additional security checks that could be blocking certain file types.
  • Temporary Deactivation: To diagnose this, temporarily deactivate all plugins related to security or media handling. Try uploading the file again after deactivating the plugins.
  • Identify the Conflict: If the error disappears after deactivating the plugins, reactivate them one by one. This will help you pinpoint which specific plugin is causing the conflict. Once you identify the culprit, you can explore its settings to see if there’s a way to adjust its behavior or consider replacing it with a different plugin.

4. Theme-related Issues: Unveiling Theme-caused Upload Woes

While uncommon, WordPress themes can sometimes introduce compatibility issues that hinder the media upload process. Here’s a comprehensive look at how themes might be affecting your uploads and how to troubleshoot them:

  • Theme’s Role in Uploads: WordPress themes control the overall look and feel of your website. They also include template files that dictate how different elements, including media, are displayed. In some cases, themes might contain code that conflicts with WordPress’s core functionality or interact unexpectedly with plugins related to media handling.

  • Identifying Theme Conflicts: Here’s a step-by-step approach to diagnose theme-related upload problems:

    1. Switch to a Default Theme: The most straightforward way to check for theme interference is to temporarily switch to a default WordPress theme like Twenty Twenty-One. These themes are designed to be lightweight and compatible with core WordPress functionalities.

      • Go to Appearance -> Themes in your WordPress dashboard.
      • Activate a default theme like Twenty Twenty-One by clicking on its thumbnail and selecting Activate.

    2. Test Uploads with Default Theme: Once the default theme is active, try uploading the problematic file again.

      • If the upload goes through successfully with the default theme, it indicates a strong possibility of a conflict with your original theme.

  • Resolving the Conflict: If the default theme solves the upload issue, you have a couple of options:

    1. Update Theme: Check if there’s an updated version of your current theme available. Theme updates often include bug fixes and compatibility improvements that might address the upload issue.

      • Go to Appearance -> Themes and look for an update notification next to your active theme.
      • If an update is available, click Update Now to install it.

    2. Contact Theme Developer: If updating the theme doesn’t resolve the issue, or there’s no update available, consider contacting the theme developer for support. They might be able to provide specific guidance on how to fix the conflict or suggest alternative solutions.

      • Look for the theme developer’s website or support forum through the theme documentation or by searching online.
      • Explain the upload issue you’re facing and mention the steps you’ve already taken, including switching to the default theme.

  • Advanced Troubleshooting (for Developers): If you’re comfortable with code editing, you can try inspecting your theme’s functions.php file for any code snippets related to media handling. However, this approach requires a strong understanding of PHP and WordPress theme development. It’s recommended to proceed with caution and have a backup of your theme files before making any changes.

Remember, modifying theme files directly can lead to unintended consequences. If you’re unsure about code editing, it’s best to stick with the first two options mentioned above or seek help from a WordPress developer.

5. Check MIME Types (Advanced):

  • MIME Types Explained: MIME stands for Multipurpose Internet Mail Extensions. These are technical identifiers that help servers recognize different file types. WordPress uses MIME types to determine how to handle uploaded files.
  • Incorrect MIME Types: If your server’s MIME type settings are incorrect, it might lead to the “Sorry, this file type is not permitted” error, even for valid file extensions.
  • Solutions (Caution Advised): There are two ways to address incorrect MIME types, but both require caution:
    • Using a Plugin: You can install a plugin like “MIME Types Extended” to manage MIME types on your WordPress site. This plugin provides a user-friendly interface to add or modify MIME types.
    • Editing Functions.php (Advanced Users Only): Experienced users can add code snippets to their theme’s functions.php file to allow specific file types. However, editing code requires caution as mistakes can break your website’s functionality. If you’re not comfortable with code editing, it’s best to stick with the plugin method or seek help from a developer.

Here’s an example of code to add in functions.php to allow additional file types:

php
function custom_myme_types($mime_types){
$mime_types['extension/type'] = 'mime/type';
// Add more mime types as needed
return $mime_types;
}
add_filter('upload_mimes', 'custom_myme_types', 10, 1);

Real life example

function my_custom_mime_types( $mimes ) {
// New allowed mime types.
$mimes['svg'] = 'image/svg+xml';
$mimes['svgz'] = 'image/svg+xml';
$mimes['doc'] = 'application/msword';
// Optional. Remove a mime type.
unset( $mimes['exe'] );
return $mimes;
}
add_filter( 'upload_mimes', 'my_custom_mime_types' );

File Size Limitations: Sometimes, the server or your WordPress settings might have a limit on the maximum file size you can upload. Ensure that your file is within the allowable size limit.

Server Configuration: In some cases, server configurations can prevent certain file types from being uploaded. Contact your web hosting support to inquire about any server-side restrictions.

.htaccess File: If your server uses Apache, there might be rules in the .htaccess file that restrict certain file types. Make sure there are no rules specifically blocking the file types you’re trying to upload.

Remember to back up your site before making any significant changes to themes, plugins, or code. If you’re not comfortable troubleshooting these issues yourself, it’s a good idea to seek help from a knowledgeable developer or your hosting provider’s support team.

Edit the wp-config.php  to fix “Sorry, you are not allowed to upload this file type ” in WordPress Temporariliy since keeping the following on in wp-config file would be a security risk.  

define('ALLOW_UNFILTERED_UPLOADS', true);

1 thought on “How to Fix the “Sorry, This File Type Is Not Permitted for Security Reasons” Error in WordPress

  1. Pingback: cam girls

Leave a Reply