WordPress.org

1. catalystwebworks
   Member
   Posted 2 years ago #

   Hi All,

   Any help anyone can provide here is appreciated.

   I'm writing a custom plugin for a client who needs to upload a CSV file, which the plugin will process and insert into a custom table.

   I'm cannot upload the CSV file through wp_handle_upload because it is getting caught up on the unfiltered_upload capability check in file.php, throwing the error: File type does not meet security guidelines. Try another.

   I'm uploading as an administrator. I have my plugin's access level set to 10. The function current_user_can shows that I, as an administrator, can edit_files, import, edit_dashboard, and all the other admin-only capabilities, but it does not recognize unfiltered_upload.

   Any thoughts? Can plugins access unfiltered_upload?

   Thanks,
   Jesse

2. Mark / t31os
   Moderator
   Posted 2 years ago #

   I'd imagine you need to add a new mime type to the whitelist for uploads.
   http://wordpress.org/extend/plugins/pjw-mime-config/

3. Mark / t31os
   Moderator
   Posted 2 years ago #

   To add:

   Admins already have unfiltered uploads, but they still can't upload mime types that are not whitelisted.

   The plugin linked above simply allows easy management of the WordPress mime types.

   There's also a filter upload_mimes if you wish to add to the whitelist or remove items in your own custom code.

4. pnull
   Member
   Posted 1 year ago #

   In fact, there is a solution for uploading Files with unknown file-types. The usage of the 'unfiltered_uploads' capability is disabled by default, but can be enabled as described here:

   jamit.de/2010/09/17/wordpress-unfiltered_uploads.html

Topic Closed

This topic has been closed to new replies.