[yuehan]

Under config - security there is a list of disallowed file extensions. This list is checked when you try to create a static page. php, php3, com, bat, etc. are in this list.

You could probably edit this, but I would be very careful, because not knowing details of how X-Cart works, changing this could result in security vulnerabilities. If you change it, you should probably change it back as soon as you're done creating your file.

Now this is the STATIC page menu, and a php file implies that it's not a static page, right? (I'm sure you have a good reason, I'm just wondering.)

Oh yeah, about the write permissions error. That's just a default error message; they don't actually check to see what caused the error.

Good Luck.