Hopefully the phpbb developers can use this error and patch in a future version since it now seems to be a common issue.My host say they found the error and disabled the rule. I have access again.
Error[Mon Mar 04 14:19:50.044831 2024] [security2:error] [pid 12796:tid 47477742208768] [client 74.81.95.50:35422] [client 74.81.95.50] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "/index.php" at REQUEST_FILENAME. [file "/etc/apache2/conf.d/modsec_vendor_configs/imunify360-full-apache/001_i360_basic.conf"] [line "8"] [id "77350314"] [msg "IM360 WAF: Path traversal attack||User:jsofzone||Path:/adm/index.php||Arg:ARGS:redirect||Match:../adm/index.php?sid=6ca476c56b10f276981ef14fabb984a2||T:APACHE||"] [severity "CRITICAL"] [tag "service_im360"] [hostname "www.example.org"] [uri "/adm/index.php"] [unique_id "ZeYe1nrqthuUh2uffMcgEAAAAQ0"], referer: https://www.example.org/adm/index.php?sid=6ca476c56b10f276981ef14fabb984a2
I have no idea on modsecurity but that looks to me that the redirect to the admin panel has triggered the block.
Statistics: Posted by ukautoforums — Wed Mar 06, 2024 9:17 am
