Resolving the “Sorry, you are not allowed to upload this file type.” WordPress Error

A Comprehensive WordPress Guide: Fix “Sorry, you are not allowed to upload this file type” Error. Discover actionable solutions to overcome the “Sorry, You Are Not Allowed to Upload This File Type” error in WordPress.

Learn how to extend file type permissions, enhance website security, and ensure seamless content uploading.

Encountering the “Sorry, You Are Not Allowed to Upload This File Type” error in WordPress can be frustrating, hindering your ability to upload essential content. However, fear not! This comprehensive guide provides actionable solutions to help you overcome this obstacle and ensure a seamless uploading experience while prioritizing website security.

Why does the “Sorry, you are not allowed to upload this file type.” error occur

The error message arises due to WordPress’ default security measures, restricting the upload of certain file types, such as executable files (.exe). While these restrictions enhance security, they can also pose challenges for users needing to upload specific file formats.

Error occurs when uploading a file with an extension not allowed by WordPress. Default file types allowed are:

FormatsSupported File Types (extension)
.jpg / .jpeg
.webp (served automatically in supported browsers)
Documents.pdf (Portable Document Format; Adobe Acrobat)
.doc, .docx (Microsoft Word Document)
.xls, .xlsx (Microsoft Excel Document)
.key (Apple Keynote Presentation)
.odt (OpenDocument Text Document)
Video.mp4, .m4v (MPEG-4)
.mov (QuickTime)
.vtt (text captions for video – upload by inserting a Video block)
.ogv (Ogg)
.wmv (Windows Media Video)
.3gp (3GPP)
.3g2 (3GPP2)
Other Formats.xml for importing a site’s content.
.csv for tasks such as importing products via WooCommerce.

Solutions to Resolve the Error

Check File Type Restrictions: Verify the file type you’re attempting to upload and assess its safety. If it’s a restricted file type like .exe, proceed with caution and consider the potential security implications. If you’re confident in the file’s safety, you can explore methods to allow the upload of specific file types, as discussed later in this article.

  • Utilize Plugins: Explore WordPress plugins like “WP Add Mime Types” designed to extend file upload capabilities. These plugins empower you to add custom file types safely, enhancing your website’s flexibility.
  • Edit Theme Functions.php: Experienced users can modify the theme’s functions.php file to allow specific file types for upload. However, exercise caution and prioritize security when implementing custom code.
  • Modify WordPress Configurations: Adjust WordPress configurations by adding a line of code to your wp-config.php file to override default upload restrictions. Ensure thorough consideration of security implications before implementing this solution.

How to upload an .exe file in WordPress

How to upload an .exe file in WordPress
How to upload an .exe file in WordPress

Allowing the upload of .exe files in WordPress can be a security risk due to the potential for malicious content. However, if you still wish to permit .exe file uploads, you can do so by modifying your WordPress site’s settings or using a plugin. Here’s how:

Method 1. Upload .exe file in WordPress website Using a Plugin:

There are plugins available that can enable uploading of various file types including .exe. One such plugin is “WP Add Mime Types” which allows you to add custom mime types, including .exe.

WP Add Mime Types empowers WordPress users to go beyond the default file upload options provided by the platform. With this plugin, you can effortlessly add custom mime types, expanding the range of permitted file formats on your website. Whether you’re a content creator, developer, or website administrator, WP Add Mime Types offers unparalleled flexibility and control over your file upload settings.

Install and activate the plugin, then follow the instructions to add the desired file type(s).

Go to WordPress Dashboard ➩ Settings ➩ Mime Type Settings ➩

Scoll Page Down and find ➩ “Add Values”

exe	= application/octet-stream

Add ➩”exe = application/octet-stream” and ➩ Save.

Key Features of WP Add Mime Types

  1. Custom Mime Type Management: Easily add, edit, or remove custom mime types to accommodate a diverse range of file formats, tailored to your specific content needs.
  2. Improved User Experience: Streamline the file upload process for your website visitors by providing support for a wider range of file types, enhancing overall user satisfaction.
  3. Seamless Integration: WP Add Mime Types seamlessly integrates with your WordPress dashboard, ensuring compatibility with existing themes and plugins, and minimizing any disruption to your workflow.
  4. Enhanced Security: While expanding file upload capabilities, prioritize website security by carefully managing custom mime types and considering potential security implications.

Method 2. Editing WordPress Functions.php:

You can also directly modify your theme’s functions.php file to allow uploading of .exe files. However, this method requires caution as it involves editing core files of your WordPress installation.

function add_custom_mime_types($mimes) {
    $mimes['exe'] = 'application/octet-stream';
    return $mimes;
add_filter('upload_mimes', 'add_custom_mime_types');

Insert this code snippet into your theme’s functions.php file. This code adds .exe as an allowed mime type for uploads.

Method 3. Editing WordPress Configurations:

You can add .exe to the list of allowed file types in your wp-config.php file. This method is relatively safer compared to directly modifying core files.


This line allows any file type to be uploaded. However, it’s essential to exercise caution with this approach as it can pose a security risk.

Prioritize Website Security:

Throughout the resolution process, prioritize website security by implementing robust measures such as firewalls, malware scanners, and regular security audits. Safeguarding your website is paramount to maintaining its integrity and protecting against potential threats.

Before implementing any of these methods, remember to consider the security implications carefully. Uploading executable files can expose your website to various security threats, including malware distribution. Always ensure that you have adequate security measures in place, such as robust firewalls, malware scanners, and regular security audits, if you choose to allow .exe file uploads.


By following the strategies outlined in this guide, you can effectively resolve the “Sorry, You Are Not Allowed to Upload This File Type” error in WordPress. Empower yourself with the knowledge and tools necessary to extend file type permissions, enhance website security, and ensure a seamless content uploading experience.

I am obsessed with software and write articles about windows software, android apk, WordPress theme, plugin and blogging. I mostly publish WordPress Customization Codes, tool's and tutorials.