If you use WordPress, you might have come across the limitation that not all file types can be uploaded. WordPress blocks certain media types by default to maintain the security of your website. But what if you need to upload a specific file type that WordPress doesn’t allow? In this article, I’ll show you how to easily enable the upload of all media types.

Why Does WordPress Block Certain File Types?

The restriction to common file types such as images, PDFs, or text documents is in place to protect your website. Certain file types, especially executable files, can potentially be harmful if uploaded to your server. Therefore, WordPress limits the upload of formats considered unsafe.

However, there are situations where you may need to upload special file types, such as for a plugin, a font, or other specific requirements. A simple code snippet can help you bypass these restrictions and allow all media types to be uploaded.

The Solution: Enable Upload of All Media Types

The following code allows you to upload any file type in WordPress:

define( 'ALLOW_UNFILTERED_UPLOADS', true );

This code is added to the wp-config.php file of your WordPress installation to unlock the upload of all media types.

Step-by-Step Guide

1. Access the wp-config.php file: You can find this file in the root directory of your WordPress installation. Access it via an FTP client like FileZilla or directly through your hosting file manager.
2. Edit the file: Open the wp-config.php file with a text editor. Add the following line before the comment
   /* That's all, stop editing! Happy blogging. */:
   define( 'ALLOW_UNFILTERED_UPLOADS', true );
3. Save the file: After adding the code, save the file and upload it back to the server if you’re using an FTP client.

Don’t Forget to Back Up!

Before making any changes to critical files like wp-config.php, it’s essential to back up your WordPress site. At VELEVO®, we always recommend keeping regular backups, especially before making changes that affect your website’s functionality. This ensures that you can quickly restore your site if anything goes wrong.

Security Considerations

While enabling the upload of all file types is very useful, you should always keep your website’s security in mind. By allowing all file types, you also open the door to potentially unsafe files. Make sure to only upload trusted file formats, and if multiple users have access to your media library, ensure that only experienced users utilize this feature.

Comment Out the Code After Use

If you only need this feature temporarily to upload specific files (for example, for a plugin or a font), we recommend commenting out the code after you’ve used it. You can do this instead of deleting the code completely, like this:

// define( 'ALLOW_UNFILTERED_UPLOADS', true );

By adding two slashes (//), the code becomes inactive, and WordPress will revert to its default security settings. This is a quick way to restore protection without needing to re-enter the code later if needed.

Alternative: Allow Specific File Types

If you don’t want to enable the upload of all media types, you can use plugins to allow only specific file types. This offers more control and security. Here are two recommended plugins:

• WP Extra File Types: This plugin allows you to add specific file formats via the backend.
• File Upload Types by WPForms: This plugin supports the upload of unusual file formats like .svg, .xml, or .json.

Conclusion

With the simple code snippet define( 'ALLOW_UNFILTERED_UPLOADS', true );, you can enable the upload of all media types in WordPress. This feature is especially useful if you need to upload rare or specialized file types. Just remember to comment out the code after use to restore your website’s security, and always back up before making changes.

If you have any questions or need assistance, the VELEVO® team is here to help. We’ll help you keep your website secure and flexible!