Hey @cicavizio,
Thanks for reaching out! Wordfence does not set a limit for the maximum file size you can upload on the site. In most cases, this limit varies depending on your hosting provider. You may need to reach out to them for assistance if your maximum upload size is fairly low.
Wordfence has three rules that check for unsanitized files containing malicious code that can be uploaded to and executed by the web server. The rules are “Malicious File Upload“, “Malicious File Upload (PHP)“, or “Malicious File Upload (Patterns)” and can be found in Wordfence > All Options > Firewall Options > Advanced Firewall Options > Rules after expanding the list.
There have been occasions when customers needed to disable one of these to prevent false positives. There are layers to how uploaded files are checked, so having to turn one of these rules off to fix any issues should still ensure malicious files are caught at a different stage of the checking process. Disabling/enabling them one by one can reveal exactly which one(s) can be permanently turned off to prevent any upload issues from reoccurring for your users.
Thanks,
Margaret
