gregorymc
Forum Replies Created
-
Forum: Plugins
In reply to: [WooCommerce] Cannot checkout if i choose certain state/provinceawesome – thank you !!! they added a rule and it works now
Why it only happens when “WC” is selected
Because
WC==wcunder case-insensitive matching, and the CRS rule is looking for command names in input. Other provinces likeGP,EC, etc. don’t collide with common Unix commands the same way.Forum: Plugins
In reply to: [WooCommerce] Cannot checkout if i choose certain state/provinceaaah – i think i found culprit in logs – but no clue how to fix this as i have all security plugins disabled for testing
January 26, 2026, 15:03:22error197.221.14.25
ModSecurity: Warning. Operator EQ matched 0 at REQUEST_HEADERS. [file “/opt/modsecurity/owasp-modsecurity-crs/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf”] [line “258”] [id “920180”] [msg “POST without Content-Length and Transfer-Encoding headers”] [data “0”] [severity “WARNING”] [ver “OWASP_CRS/4.22.0”] [tag “application-multi”] [tag “language-multi”] [tag “platform-multi”] [tag “attack-protocol”] [tag “paranoia-level/1”] [tag “OWASP_CRS”] [tag “OWASP_CRS/PROTOCOL-ENFORCEMENT”] [tag “capec/1000/210/272”] [hostname “edc-s.co.za”] [uri “/wp-cron.php”] [unique_id “aXdmGv33M3Dz0j6MVewo4QAAAEI”]January 26, 2026, 15:03:20error102.216.73.122
ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 20 at TX:blocking_inbound_anomaly_score. [file “/opt/modsecurity/owasp-modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf”] [line “233”] [id “949110”] [msg “Inbound Anomaly Score Exceeded (Total Score: 25)”] [ver “OWASP_CRS/4.22.0”] [tag “anomaly-evaluation”] [tag “OWASP_CRS”] [hostname “edc-s.co.za”] [uri “/”] [unique_id “aXdmFxicVjX5Zo7xY0eEkQAAAB8”]
ModSecurity: Warning. Pattern match “(?i)(?:^|b[\\”‘\\\\)\\\\[\\\\x5c]*(?:(?:(?:\\\\|\\\\||&&)[\\\\s\\\\x0b]*)?\\\\$[!#\\\\(\\\\*\\\\-0-9\\\\?@_a-\\\\{]*)?\\\\x5c?u[\\”‘\\\\)\\\\[\\\\x5c]*(?:(?:(?:\\\\|\\\\||&&)[\\\\s\\\\x0b]*)?\\\\$[!#\\\\(\\\\*\\\\-0-9\\\\?@_a-\\\\{]*)?\\\\x5c?s[\\”‘\\\\)\\\\[\\\\x5c]*(?:(?:(?:\\\\|\\\\||&&)[\\\\s\\\\x0b]*)?\\\\$[!#\\\\(\\\\*\\\\-0- …” at ARGS:post_data. [file “/opt/modsecurity/owasp-modsecurity-crs/rules/REQUEST-932-APPLICATION-ATTACK-RCE.conf”] [line “514”] [id “932250”] [msg “Remote Command Execution: Direct Unix Command Execution”] [data “Matched Data: =WC&billing_postcode=0184&billing_phone=0123456789&billing_email=philip%40strathive.com&shipping_first_name=Test&shipping_last_name=test&shipping_company=test&shipping_country=ZA&shipping_address_1=test&shipping_address_2=test&shipping_city=langebaan&shipping_state=WC&shipping_postcode=0184&order_comments=&shipping_method%5B0%5D=flat_rate%3A4&payment_method=payfast&terms-field=1&woocommerce-process-checkout-nonce=440926951a&_wp_http_referer=%2Fcheckout-2%2F found within ARGS:post_data: wc_o…”] [severity “CRIT [hostname “edc-s.co.za”] [uri “/”] [unique_id “aXdmFxicVjX5Zo7xY0eEkQAAAB8”]Forum: Plugins
In reply to: [WooCommerce] Cannot checkout if i choose certain state/provincein meantime till i can locate issue im using css to force the blocks on checkout to show
div.blockUI.blockOverlay{
display: block!important;
position: initial!important;
}