Plugin is triggering mod security rules

  • Resolved webevolutionteam

    (@webevolutionteam)


    10 years, 8 months ago

    Hi

    Ive been having problems with all my sites that have the plugin on them.

    As soon as I login to a site my site gets blocked by my hosting company. They are telling me its because this plugin is causing “The plugin is triggering our modsec rules”.

    Additional information:

    Log entries:

[Sat Sep 12 18:42:27.210497 2015] [:error] [pid 423312:tid 140028103550720] [client XXX.XX.XX.XXX] ModSecurity: Access denied with code 403 (phase 1). Pattern match "^(-(a|b|C|q|T|c|n|d|e|f|h|\\\\?|i|l|m|r|B|R|F|E|S|t|s|v|w|z)|--(interactive|bindpath|no-chdir|no-header|timing|php-ini|no-php-ini|define|profile-info|file|help|usage|info|syntax-check|modules|run|process-begin|process-code|process-file|process-end|server ..." at QUERY_STRING. [file "/usr/local/apache/conf/modsec_vendor_configs/comodo_apache/22_PHP_PHPGen.conf"] [line "17"] [id "220030"] [msg "COMODO WAF: found CVE 2012-1823 attack"] [hostname "XXXXX.XXX"] [uri "/wp-content/plugins/juiz-social-post-sharer/css/fonts/jsps.woff"]

    https://ww.wp.xz.cn/plugins/juiz-social-post-sharer/

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author Geoffrey

    (@creativejuiz)

    10 years, 8 months ago

    Hi,

    This alert is very strange. You are the first one to tell me about that.

    Could you send me the jsps.woff file, I’ll control if we have the same file. Then I will investigate.
    support[_at_]creativejuiz[_.dot._]com

    Thank you.

    Plugin Author Geoffrey

    (@creativejuiz)

    10 years, 7 months ago

    Hi there,

    I can’t help you if you don’t want to share informations with me.

    Thank you.

Viewing 2 replies - 1 through 2 (of 2 total)

The topic ‘Plugin is triggering mod security rules’ is closed to new replies.