The file could not be written to disk.

April 27, 2017 9:56am

Subscribe [2]
  • #1 / Apr 27, 2017 9:56am


    83 posts


    A client is having problems uploading PDFs to the server via a file field. They get the error message “The file could not be written to disk.”

    I asked them to send me the PDF so I could test and I can upload to the server.

    The client is in “Site Admin” member group and I’m in “Super Admin”.

    If I disable Apply XSS filtering in the security & privacy section then the client can upload to the server. This is not Ideal.

    Could someone please suggest what I need to do to fix this in ExpressionEngine 3.5.4


  • #2 / Apr 27, 2017 10:47am

    JT Thompson's avatar

    JT Thompson

    745 posts

    XSS filtering is a double edge sword, it is going to catch things that are valid sometimes - there is just no way to code around it. If this is just a one-off for you I’d do it manually and move along - if it’s a constant issue you may need to turn off XSS filtering for the backend.

  • #3 / Apr 29, 2017 11:10pm

    Derek Jones's avatar

    Derek Jones

    7391 posts

    If these are trusted users, you can whitelist them from XSS checks—either the member(s) individually, or an entire group, which sounds like it might be more appropriate in this case based on the group name. See the xss_clean_member_group_exception config override.

  • #4 / May 03, 2017 8:46am


    83 posts

    Thanks Derek.

.(JavaScript must be enabled to view this email address)

ExpressionEngine News!

#eecms, #events, #releases