403 forbidden error | ww.wp.xz.cn

Resolved altmanncarol
(@altmanncarol)

12 years, 1 month ago

Since installing this plugin, if somebody uses the ‘search’ button on my page and includes an apostrophe in the search terms (eg farmer’s wife) it brings up a 403 forbidden error message. Any ideas how to fix this?
http://www.bluestonemagazine.com.au

https://ww.wp.xz.cn/plugins/bulletproof-security/

Viewing 3 replies - 1 through 3 (of 3 total)

Plugin Author AITpro
(@aitpro)

12 years, 1 month ago

The single quote code character (apostrophe) is the #1 most dangerous coding character there is when in the wrong hands. BPS blocks the single quote code character (apostrophe) in strings/URLS.

You have 2 options:
1. Do not use apostrophes in searches.
2. Add modified security code to BPS Custom Code to allow apostrophes to be used in searches: http://forum.ait-pro.com/forums/topic/apostrophe-single-quote-code-character/#post-6939

Thread Starter altmanncarol
(@altmanncarol)

12 years, 1 month ago

Thanks for the quick reply and the tip about code dangers.
Given the vulnerability issues around the apostrophe, I have gone for a middle ground solution and changed the 403 message (via the php file) to ask readers to remove the apostrophe in the search.
At least then they know there is not a problem with the site, as such, and can do their search again.
Thanks for your help!

Plugin Author AITpro
(@aitpro)

12 years, 1 month ago

Very smart choice. 😉

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘403 forbidden error’ is closed to new replies.

Tags

3 replies
2 participants
Last reply from: AITpro
Last activity: 12 years, 1 month ago
Status: resolved