Tips and Tricks HQ Support

Support site for Tips and Tricks HQ premium products

You are here: Home

ethanhw

Forum Replies Created

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • August 4, 2010 at 9:34 pm in reply to: Modsecurity Issue #22189
    ethanhw
    Member

    I did not receive the request via email. Can you try again? Thanks!

    August 3, 2010 at 10:16 pm in reply to: Modsecurity Issue #22187
    ethanhw
    Member

    I am having the same issue. I purchased and installed the WP-Estore plugin today, and just as I started using it I got blocked by my web host. When I asked them about it they sent a similar message from their server log:

    [Tue Aug 03 10:45:45 2010] [error] [client 71.169.184.71] ModSecurity: Access denied with code 406 (phase 2). Pattern match “(?:b(?:(?:type\b\W*?\b(?:text\b\W*?\b(?:j(?:ava)?|ecma|vb)|application\b\W*?\bx-(?:java|vb))script|c(?:opyparentfolder|reatetextrange)|get(?:special|parent)folder|iframe\b.{0,100}?\bsrc)\b|on(?:(?:mo(?:use(?:o(?:ver|ut)|down|move|up)|ve)|key(?:press|d …” at REQUEST_FILENAME. [file “/usr/local/apache/conf/modsec2.user.conf”] [line “120”] [id “950004”] [msg “Cross-site Scripting (XSS) Attack”] [data “.cookie”] [severity “CRITICAL”] [tag “WEB_ATTACK/XSS”] [hostname “www.ethanhw.com”] [uri “/avocado/wordpress/wp-content/plugins/wp-cart-for-digital-products/lib/jquery.cookie.js”] [unique_id “TFgrmUH@LmAAAByNucoAAAAL”]

    I found this post and made the modification suggested to wp_estore1.php, and uploaded the modified file. When I tried logging in to WordPress and working with the WP-estore settings the same thing happened. Any other ideas about how to fix this? I’d love to be able to use the plugin, but obviously it’s not working for me currently. Thanks!

    Ethan

  • Author
    Posts
Viewing 2 posts - 1 through 2 (of 2 total)