A Wordpress website is not accessible after recently wordpress update 8.x version
The error :
Forbidden
You don't have permission to access this resource.
Root Cause : Comodo rule with ID 218500 is false-positively triggered when Woocommerce 8.x is in us ( depends plugins and version )
The lines below can be found in /var/log/[ http or nginx ]/domains > example.com.error.log:
22:48:56 [error] 2311512#0: *127470 [client 37.6.255.227] ModSecurity: Access denied with code 403 (phase 2). Matched "Operator `Rx' with parameter `[\[\]\x22',()\.]{10}$|\b(?:union\sall\sselect\s(?
?:null|\d+),?)+|order\sby\s\d{1,4}|(?:and|or)\s\d{4}=\d{4}|waitfor\sdelay\s'\d+:\d+:\d+'|(?:select|and|or)\s(?
?
g_)?sleep\(\d+\)|\d+\s?=\s?(?:dbms (436 characters omitted)' against variable `REQUEST_COOKIES:sbjs_first_add' (Value: `fd%3D2024-01-16%2008%3A20%3A34%7C%7C%7Cep%3Dhttps%3A%2F%example.com%2F%7C%7C%7Crf%3D%28none%29' ) [file "/usr/local/cwaf/rules/22_SQL_SQLi.conf"] [line "109"] [id "218500"] [rev "18"] [msg "COMODO WAF: SQLmap attack detected||example.com|F|2"] [data "Matched Data: |||rf=(none) found within REQUEST_COOKIES:sbjs_first_add: fd=2024-01-16 08:20:34|||ep=https:/example.com/|||rf=(none)"] [severity "2"] [ver ""] [maturity "0"] [accuracy "0"] [tag "CWAF"] [tag "SQLi"] [hostname "10.0.0.5"] [uri "/wp-admin/admin-ajax.php"] [unique_id "170543813693.032521"] [ref "v5,24o77,12v1383,163t:urlDecodeUni,t:htmlEntityDecode,t:normalizePath,t:compressWhiteSpace,t:lowercaseo46,12v985,95t:urlDecodeUni,t:htmlEntityDecode,t:normalizePath,t:compressWhiteSpace,t:lowercaseo46 (93 characters omitted)"], client: 37.6.255.227, server: example.com, request: "POST /wp-admin/admin-ajax.php HTTP/2.0", host: "example.com", referrer: "https://example.com/wp-admin/index.php"
Reference :
wordpress.org
The error :
Forbidden
You don't have permission to access this resource.
Root Cause : Comodo rule with ID 218500 is false-positively triggered when Woocommerce 8.x is in us ( depends plugins and version )
The lines below can be found in /var/log/[ http or nginx ]/domains > example.com.error.log:
22:48:56 [error] 2311512#0: *127470 [client 37.6.255.227] ModSecurity: Access denied with code 403 (phase 2). Matched "Operator `Rx' with parameter `[\[\]\x22',()\.]{10}$|\b(?:union\sall\sselect\s(?
Reference :
![wordpress.org](https://s.w.org/images/backgrounds/wordpress-bg-medblue.png)
Major Critical Errors with Woo 8.5.1. Why the lack of response?
Support » Plugin: WooCommerce » Major Critical Errors with Woo 8.5.1. Why the lack of response? Major Critical Errors with Woo 8.5.1. Why the lack of response? flowsheff (@flowsheff) 1 …