diff --git a/core/lib/upload/um-file-upload.php b/core/lib/upload/um-file-upload.php
index 841c3b4a..33d75d39 100644
--- a/core/lib/upload/um-file-upload.php
+++ b/core/lib/upload/um-file-upload.php
@@ -21,10 +21,14 @@ $timestamp = $_POST['timestamp'];
 $ultimatemember->fields->set_id = $_POST['set_id'];
 $ultimatemember->fields->set_mode = $_POST['set_mode'];
 
-if ( ! wp_verify_nonce( $nonce, 'um_upload_nonce-'.$timestamp  ) && is_user_logged_in() ) {
-    // This nonce is not valid.
-    $ret['error'] = 'Invalid nonce';
-    die( json_encode( $ret ) );
+$um_file_upload_nonce = apply_filters("um_file_upload_nonce", true );
+
+if(  $um_file_upload_nonce  ){
+	if ( ! wp_verify_nonce( $nonce, 'um_upload_nonce-'.$timestamp  ) && is_user_logged_in()) {
+	    // This nonce is not valid.
+	    $ret['error'] = 'Invalid nonce';
+	    die( json_encode( $ret ) );
+	}
 }
 
 
diff --git a/core/lib/upload/um-image-upload.php b/core/lib/upload/um-image-upload.php
index 2e7e748d..3b67c656 100644
--- a/core/lib/upload/um-image-upload.php
+++ b/core/lib/upload/um-image-upload.php
@@ -20,10 +20,14 @@ $nonce = $_POST['_wpnonce'];
 $ultimatemember->fields->set_id = $_POST['set_id'];
 $ultimatemember->fields->set_mode = $_POST['set_mode'];
 
-if ( ! wp_verify_nonce( $nonce, 'um_upload_nonce-'.$timestamp ) && is_user_logged_in() ) {
-    // This nonce is not valid.
-    $ret['error'] = 'Invalid nonce';
-    die( json_encode( $ret ) );
+$um_image_upload_nonce = apply_filters("um_image_upload_nonce", true );
+
+if(  $um_image_upload_nonce ){
+	if ( ! wp_verify_nonce( $nonce, 'um_upload_nonce-'.$timestamp ) && is_user_logged_in() ) {
+	    // This nonce is not valid.
+	    $ret['error'] = 'Invalid nonce';
+	    die( json_encode( $ret ) );
+	}
 }
 
 if(isset($_FILES[$id]['name'])) {