Why can’t I upload ICO files to WordPress?

Via the Site Identity settings in the Customizer, I can’t upload a favicon image.

Site Identity != favicon image. It’s used for favicons and resized down but it’s also used in lots of other locations.

E.g. it can appear in:

  • the theme header as the logo
  • smartphone homescreens
  • twitter and FB previews

So uploading a tiny image can be harmful, this is why the site identity has a minimum size recommendation. .ico files do not work in those places.

I get the error message ‘Sorry, you are not allowed to upload this file type.’

Yes and no, WP does indeed support uploading of .ico files:

https://github.com/WordPress/wordpress-develop/blob/6.2/src/wp-includes/functions.php#LL3350C5-L3351C5

    return apply_filters(
        'mime_types',
        array(
            // Image formats.
            'jpg|jpeg|jpe'                 => 'image/jpeg',
            'gif'                          => 'image/gif',
            'png'                          => 'image/png',
            'bmp'                          => 'image/bmp',
            'tiff|tif'                     => 'image/tiff',
            'webp'                         => 'image/webp',
            'ico'                          => 'image/x-icon',
            'heic'                         => 'image/heic',

If you cannot then this means one of two things:

  • a plugin or filter is removing support
  • the .ico file is not actually a .ico file and has the .ico extension but is actually a different format, so image/x-icon doesn’t amtch
  • the host is passing the file with the incorrect mime type

Eitherway you should be using PNG instead as it has wider support, fewer issues, and allows for higher resolutions, bit depths, and quality than .ico files.

The only benefit .ico has is that it has wider support on very old browsers.

But if I just copy the favicon to my root directory via my Cpanel File Manager it works fine.

If no HTML tag tells the browser where to find the image for favicons, it requests /favicon.ico from the server as a fallback. Since you did not set a site identity image, WP doesn’t print those HTML tags.

The browser is built to be very forgiving so even if it’s not a valid .ico or if it’s a PNG with a .ico extension it will still work when used this way.

Why is WordPress disallowing this? Is there a security reason?

WP allows it! But your server and the code in your theme/plugins does not. You will need to isolate this further by doing standard debugging steps such as disabling all plugins and using a default theme, then re-activating them one by one until the problem returns to identify the culprit.

But you shouldn’t be using .ico favicons anyway

The site identity is used for far more than the favicon, and there’s a reason WP wants files bigger than 512×512, because using a 64x64px icon for social media images and all the other things WP uses the site icon for would be bad for your site.

.ico files have limited support and capabilities, and have fundamental limitations on resolutions. They also have historic security issues.

You may want to upload a .ico file via CPanel for very old software but even if you do that, you should still include a PNG favicon via WP’s site identity.

Note that there are tools and converters that can take an existing .ico file and transform it into a PNG file, so needing a PNG file should not be a problem, even if the only file you have is in the .ico format.

Related Posts:

  1. Does a favicon have to be 32×32 or 16×16?
  2. favicon.png vs favicon.ico – why should I use PNG instead of ICO?
  3. Use Font Awesome Icon As Favicon
  4. What’s the proper way to add a favicon in WordPress without a plugin? [closed]
  5. Favicon storage – which folder should be used?
  6. How to change the WordPress favicon?
  7. Where can I change favicon in my wordpress website?
  8. Problem with favicon in the latest wp
  9. favicon now showing up
  10. Why does WordPress want a 512×512 pixel site icon
  11. Not able to show the favicon to the uploads URL in WordPress
  12. Favicon only appearing on the homepage?
  13. wordpress favicon not working properly on all browsers
  14. Favicon does not showup
  15. Favicon not working properly in chrome and in firefox
  16. Facebook favicon appearing on my home page
  17. How to add a browser tab icon (favicon) for a website?
  18. Adding a favicon to a static HTML page
  19. Add Favicon to Website [duplicate]
  20. remove favicon white background
  21. HTML 5 Favicon – Support?
  22. Add image in title bar
  23. Do you have to include link rel=”icon” href=”favicon.ico” type=”image/x-icon” /?
  24. What is the best practice for creating a favicon on a web site?
  25. Favicon not working
  26. Dash icons Not Showing properly in Menu Using WordPress
  27. How to display .ico files in the media library
  28. How to add favicon to my site – in both front end and admin panel
  29. Where do the favicons for Media Files come from
  30. Conditional Logic to Check for Site Icon
  31. Check if Favicon is set in Customizer
  32. How to change in customizer the “site identity” tab required capabilities
  33. favicon and multi site
  34. Favicon plugin for WordPress running in network mode (multisite)? [closed]
  35. Remove apple-touch-icon link generated by WordPress
  36. How to add iOS & fav icons to the theme?
  37. Why does WP recommend against custom favicon functionality in themes?
  38. How do I set my Feedburner feed to use my favicon?
  39. Plugin that inserts favicon next to links
  40. Change Favicon on Login Screen?
  41. Can’t delete unwanted favicon
  42. Compact pingback list with favicons
  43. Posting with slug “favicon” gets redirected
  44. Multisite favicon.ico
  45. Twentyten Child Theme: header images display messed up in admin panel
  46. Trying to create a plugin to change wordpress site icons per page
  47. How to disable cropping of the site icon?
  48. Set Site Icon programmatically (eg. using `wp cli`)
  49. Rewrite rule for path of favicon.ico ( Add_rewrite_rule function possible ? )
  50. How do I add a favicon that only shows during viewing of my plugin’s admin panel?
  51. Unable to display favicon using get_favicon()?
  52. Getting an error. Need to add favicon in my child theme functions.php. What’s wrong?
  53. Different favicon on different pages
  54. how to create a fav icon shortcode?
  55. Favicon not loading until cookies are accepted?
  56. Changable favicon
  57. adding a favicon to site2 – site1/site2/favicon.ico
  58. How to change the WordPress email icon?