Control Web Panel

WebPanel => CentOS 7 Problems => Topic started by: venty on April 19, 2023, 06:52:52 AM

Title: I have problems with WordPress and ModSecurity - Access denied with code 403...
Post by: venty on April 19, 2023, 06:52:52 AM

Hi,

I have problems with WordPress and  ModSecurity:

...ModSecurity: Access denied with code 403 (phase 2). Pattern match "[\\\\r\\\]\\\\W*?(?:content-(type|length)|set-cookie|location):" ............ [msg "COMODO WAF: HTTP Response Splitting Attack||...........admin-ajax.php......

Thaks in advance!

BR
Venty

Title: Re: I have problems with WordPress and ModSecurity - Access denied with code 403...
Post by: overseer on May 06, 2023, 03:25:20 AM

If you don't need it for that particular site, you could disable ModSecurity for that user. You are using the Comodo ruleset, so that's good -- but seems as though you would need to tune it for your installed WP. Are you using the current version of WP?

Title: Re: I have problems with WordPress and ModSecurity - Access denied with code 403...
Post by: nabtn on May 11, 2023, 02:57:41 PM

get the modsecurity id and disable it