WordPress.org

Make WordPress Core

Changes between Initial Version and Version 1 of Ticket #53783


Ignore:
Timestamp:
07/26/2021 12:13:05 PM (3 months ago)
Author:
sabernhardt
Comment:

Legend:

Unmodified
Added
Removed
Modified
  • Ticket #53783 – Description

    initial v1  
    44
    55triggering a mod security rule as below:
    6 
     6{{{
    77 941160 Warning. Pattern match \"(?i:(?:<\\w[\\s\\S]*[\\s\\/]|\'\\" ?)(?:on(?:d(?:e(?:vice(?:(?:orienta|mo)tion|proximity|found|light)|livery(?:success|error)|activate)|r(?:ag(?:e(?:n(?:ter|d)|xit)|(?:gestur|leav)e|start|drop|over)|op)|i(?:s(?:c(?:hargingtimechange ...\" at REQUEST_HEADERS:Referer. [file \"/etc/apache2/conf.d/modsec_vendor_configs/OWASP3/rules/REQUEST-941-APPLICATION-ATTACK-XSS.conf\"] [line \"199\"] [id \"941160\"] [msg \"NoScript XSS InjectionChecker: HTML Injection\"] [data \"Matched Data: \x0d\x0a 2021-07-24 18:22:36
     8}}}