Title: SQL Injections blocked while posting php code
Last modified: January 5, 2022

---

# SQL Injections blocked while posting php code

 *  Resolved [dimal](https://wordpress.org/support/users/dimalifragis/)
 * (@dimalifragis)
 * [4 years, 5 months ago](https://wordpress.org/support/topic/sql-injections-blocked-while-posting-php-code/)
 * Hello.
 * We have a forum (using wpForo plugin) for developers. We have a **major** problem
   with users trying to post code changes and suggestions in the topics and being
   blocked by Ninja Firewall because of SQL injections (as i see in the log).
 * How can i solve this?
 * Thanks

Viewing 6 replies - 1 through 6 (of 6 total)

 *  Thread Starter [dimal](https://wordpress.org/support/users/dimalifragis/)
 * (@dimalifragis)
 * [4 years, 5 months ago](https://wordpress.org/support/topic/sql-injections-blocked-while-posting-php-code/#post-15220966)
 * In the log the only thing i see that could be the reason is some
 * `"actually works.</p>%0d%0a<p>For example if you enter"`
 * Could that “%0d%0a” be the issue?
 *  Thread Starter [dimal](https://wordpress.org/support/users/dimalifragis/)
 * (@dimalifragis)
 * [4 years, 5 months ago](https://wordpress.org/support/topic/sql-injections-blocked-while-posting-php-code/#post-15221296)
 * Let me add here that this happens RANDOMLY. Most of the times it doesn’t happen
   and we are able to post whatever code we want.
 * I tried to replicate it and failed.
 *  Plugin Author [nintechnet](https://wordpress.org/support/users/nintechnet/)
 * (@nintechnet)
 * [4 years, 5 months ago](https://wordpress.org/support/topic/sql-injections-blocked-while-posting-php-code/#post-15223558)
 * Which rule number is it? You can find it in the firewall’s log.
 *  Thread Starter [dimal](https://wordpress.org/support/users/dimalifragis/)
 * (@dimalifragis)
 * [4 years, 5 months ago](https://wordpress.org/support/topic/sql-injections-blocked-while-posting-php-code/#post-15224174)
 * 05/Jan/22 03:35:06 #6594195 CRITICAL 252 IP POST /wp-admin/admin-ajax.php – SQL
   injection – [POST:body =
 * 05/Jan/22 03:36:39 #2114343 CRITICAL IP POST /index.php – SQL injection – [POST:
   post = 2 476 RE:
 *  Plugin Author [nintechnet](https://wordpress.org/support/users/nintechnet/)
 * (@nintechnet)
 * [4 years, 5 months ago](https://wordpress.org/support/topic/sql-injections-blocked-while-posting-php-code/#post-15225721)
 * You can safely disable the rule ID 252 (NinjaFirewall > Security Rules > Rules
   Editor). It’s a rule that will be removed in the next few days anyway because
   it’s no longer needed.
 *  Thread Starter [dimal](https://wordpress.org/support/users/dimalifragis/)
 * (@dimalifragis)
 * [4 years, 5 months ago](https://wordpress.org/support/topic/sql-injections-blocked-while-posting-php-code/#post-15226077)
 * I will do that, thank you

Viewing 6 replies - 1 through 6 (of 6 total)

The topic ‘SQL Injections blocked while posting php code’ is closed to new replies.

 * ![](https://ps.w.org/ninjafirewall/assets/icon-256x256.png?rev=976137)
 * [NinjaFirewall (WP Edition) - Advanced Security Plugin and Firewall](https://wordpress.org/plugins/ninjafirewall/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/ninjafirewall/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/ninjafirewall/)
 * [Active Topics](https://wordpress.org/support/plugin/ninjafirewall/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/ninjafirewall/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/ninjafirewall/reviews/)

 * 6 replies
 * 2 participants
 * Last reply from: [dimal](https://wordpress.org/support/users/dimalifragis/)
 * Last activity: [4 years, 5 months ago](https://wordpress.org/support/topic/sql-injections-blocked-while-posting-php-code/#post-15226077)
 * Status: resolved