maybe you can try to check your php logs or enable wp_debug to see if there’s any other error which can help us.
Thank you for the response.
wp_debug is enabled and I am not getting any errors in admin or main log. I checked the servers error log and nothing there. It is as if Mod sees Event filter as a threat and blocks it. Similar to the problem Event had with cPanel CSF last November in the sense that Event Calander filter seems to be triggering a false positive.
We have about 30 other WordPress sites on the shared server and others on other servers and have never seen anything like this before.
Apache/2.4.18 (Unix) OpenSSL/1.0.1e-fips mod_bwlimited/1.4 mod_fcgid/2.3.9
PHP 5.6.16
Here is the ModSecurity record of the security response to Events Calander All Events filter action.
CRITICAL 302 SQL Injection Attack: SQL Tautology Detected
Request:
GET/wp-admin/edit.php?s=&post_status=all&post_type=event&_wpnonce=e6796e2654&_wp_http_referer=%2Fwp-admin%2Fedit.php%3Fpost_type%3Devent&action=-1&m=0&scope=all&filter_action=Filter&paged=1&action2=-1
Action Description:
Access denied with redirection to http:/domain.com/ using status 302 (phase 2).
Justification:
Pattern match “(?i:([\\s’\”\\(\\)]*?)([\\d\\w]++)([\\s'\"\\(\\)]*?)(?:(?:=|<=>|r?like|sounds\\s+like|regexp)([\\s’\”\\(\\)]*?)\\2|(?:!=|<=|>=|<>|<|>|\\^|is\\s+not|not\\s+like|not\\s+regexp)([\\s'\"\\(\\)]*?)(?!\\2)([\\d\\w]+)))” at ARGS:_wp_http_referer.
Plugin is definitely triggering ModSecurity.
Which version of Events Manager and WordPress are you using?
Can you test with all other plugins deactivated and while running the default WordPress theme?
Through this whole trouble shooting prosess all pluggins have been disabled, WP 4.4.2, switched to 2015 and latest EC 5.6.2
