Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.


Messages - a7cloud

Pages: [1]
1
Softaculous / Re: Unauthorised web access
« on: June 27, 2019, 02:23:58 PM »
Awesome, thank you so much Solsku. By following your instructions, I was able to solve the problem, restored all the settings and configuration.

2
Mod_Security / Re: mod_security 403 forbidden
« on: June 26, 2019, 03:59:51 PM »
Correct, added the rule 211290 and website backed to normal. Thank you

3
Mod_Security / Re: Error 403 on Opencart
« on: June 26, 2019, 03:58:16 PM »
Correct, added the rule 211290 and website backed to normal. Thank you

4
Softaculous / Re: Unauthorised web access
« on: June 26, 2019, 03:21:13 PM »
YEs, it happaned to me today as well. Suddenly there are many bugs with CWP pro and softaculous. I paid for pro version because I want it is stable, but look like so many bugs so far. The problem "Unauthorised web access" at both admin panel and end user panel.

5
Mod_Security / Re: mod_security 403 forbidden
« on: June 24, 2019, 07:05:30 PM »
[Mon Jun 24 13:52:39.174547 2019] [:error] [pid 375:tid 140326513637120] [client 2601:2c0:4480:f71:6c71:da74:f288:9f4a:50436] [client 2601:2c0:4480:f71:6c71:da74:f288:9f4a] ModSecurity: Access denied with code 403 (phase 2). Pattern match "(?:'\\\\xbf?\\\\x22|\\\\x22\\\\xbf?'|^\\\\+?$)" at ARGS_POST:aio_special_field. [file "/usr/local/apache/modsecurity-cwaf/rules/02_Global_Generic.conf"] [line "199"] [id "211290"] [rev "3"] [msg "COMODO WAF: XSS and SQLi vulnerability||baovn.news|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "Generic"] [hostname "baovn.news"] [uri "/login_xxx/"] [unique_id "XREb96tkxHFC-udTriUrbwAAAMo"], referer: https://baovn.news/login_xxx

Which is false positive. Actually, this is an enhance security feature from a wordpress security plugin. This plugin change the default wordpress login path abc.com/wp-login.php --> abc.com/yourlogin.

6
Mod_Security / Re: mod_security 403 forbidden
« on: June 24, 2019, 06:30:16 PM »
I have the same problem. The mod security has a critical issue today. It break wordpress. All wordpress wp-admin folder became mal-function with forbidden 403 error. No permission to upload media, delete plugins, change users password, etc... Please fix. The security mod currently using is from comodo awf

Pages: [1]