If you’re one of the frustrated users who are excited to upgrade to the latest version of WordPress 2.5.x only to be turned-off by the image upload function, then read on.
The new version has great way in handling media upload, it is a redesign from the previous version. It is sleek and simple but because of it’s AJAX implementation, loading seems like a little slow.
Aside from this slow loading issue, I can’t seem to upload a single image. I tried several times and still the same, failed to upload. No issue with images hosted somewhere else, it’s just when trying to upload an image that this issue occur with the following message:
I just found that this has something to do with Apache’s mod_security.
Mod_security is a module for your Apache server. You can think of mod_security as a firewall for your Apache. It works as a intrusion detection system, and helps to shields you from a number of different attacks, such as SQL injection attacks, cross-site scripting and other nasties.
The problem with disabling mod_security is that you make it easier for hackers to compromise your system. However if you use a .htaccess file the security risk is limited, as you are only disabling mod_security for async-upload.php
Here’s how to correct it:
- Connect to your server using FTP client, CPanel or or shell terminal and navigate to the WordPress root folder. This is usually located in /home/userID/public_html or sub-folders below it.
- Find .htaccess and edit it. If there isnt any .htaccess file, create one.
- Editing the file depends on your text editor. Insert the following at the bottom of .htaccess:
- Save the file. You should be able to upload now..
<IfModule mod_security.c>
<Files async-upload.php>
SecFilterEngine Off
SecFilterScanPOST Off
</Files>
</IfModule>
UPDATE:
After going through the above procedure, hacking WP to get the media upload working. Some kind soul managed to create a WP plugin that fixed the issue. It’s not a 100% solution though as users are still reporting the same problem after installing this plugin. Get it here:
This is an update for those using the 2.6.x version that are still experiencing this issue:
- Login to your WordPress blog as an admin
- Go to “Settings”
- Click the menu-tap “Miscellaneous”
- Change “Store uploads in this folder” settings from “wp-content” to “wp-content/uploads”
- Click save and you’re all done!
…
try this it might help you out
try this it might help you out
tizurzahSdksX
tizurzahSdksX
You’re the best!
You’re the best!
awesome it worked
awesome it worked
I didn’t find the .htaccess in my FTP.
When I try to create it, my text editor says that files which begin with “.” are for the system and will be occult, wherever I save it. And I can’t create one directly in my FTP.
I installed that plugin which fixes the problem, and didn’t worked
omg, what do I do now?
I didn’t find the .htaccess in my FTP.
When I try to create it, my text editor says that files which begin with “.” are for the system and will be occult, wherever I save it. And I can’t create one directly in my FTP.
I installed that plugin which fixes the problem, and didn’t worked
omg, what do I do now?