lia Posted 4 hours ago Posted 4 hours ago Hello, I am getting a 403 Forbidden error when viewing user pages on my wiki, ex. https://salt.wiki.gd/User:Lia Having searched the issue, it seems to be that the page is flagged by Apache's mod_security. Can this be fixed? Thank you Quote
wolstech Posted 3 hours ago Posted 3 hours ago Indeed it is mod security. You can see the error in Plesk in the Logs for your domain. ModSecurity: Access denied with code 403 (phase 1). Pattern match "\\\\D" at TX:1. [file "/etc/httpd/conf/modsecurity.d/rules/comodo_free/30_Apps_OtherApps.conf"] [line "4530"] [id "240950"] [rev "2"] [msg "COMODO WAF: XSS & SQL injection vulnerability in Pragyan CMS 3.0 (CVE-2015-1471)||salt.wiki.gd|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "salt.wiki.gd"] [uri "/User:Lia"] [unique_id "aZnLyrW2MUbixOOUfFzWWQAAAok"], referer: https://helionet.org/ You can actually whitelist these yourself in the Web Application Firewall page of Plesk. I went ahead and added rule 240950 to the exception list for you. The changes will take 2 hours to take effect. 1 Quote
lia Posted 1 hour ago Author Posted 1 hour ago (edited) Thank you, that's helpful to know for the future! Edited 1 hour ago by lia Quote
.thumb.jpg.dbd19582043fe61e7a68ea2d2d70dad5.jpg)
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.