POST https://{domain}/wp-json/wp/v2/template-parts/basti//new-header-2?_locale=user 403

On screen it simply states: Saving failed

It started when I upgraded to the latest wp version, since then I’ve downgraded back to 6.2 but the issue prevails.

I’ve tried reinstalling the theme from fresh, using other themes, deactivating all plugins, changing file permissions and deleting and creating a new .htaccess file. But nothing seems to work.

Please any insight on this problem would be greatly appreciated.

When I try to save any changes done on Template parts I get a 403 error on the POST request sent to the server.

I also get an HTTP ERROR 403 when I try going to Tools > Site Health (might be an unrelated issues).

I’ve tried the obvious solutions to 403 issues but the error persists, I’ve tried changing file permissions, deactivating all plug-ins and deleting and creating a new .htaccess file.

I believe the issue might have started when I updated the WordPress version to the latest 6.3 release. I’ve tried downgrading it back to 6.2 but it hasn’t fixed the problem either.

I’m using Basti wordpress theme (to give a bit more context)

Any help or advice is welcomed.

Thank you!
Alvaro

Also tried another block theme with a Pages template. It would not allow me to save it either.

When editing in the site editor, I was trying to change the style from Default to Sherbet but was constantly getting “Saving failed” error messages. I got the same error when trying to save any of the other styles too.

I went to my host to check my error log and found multiple error messages that seemed to indicate that DreamHost’s firewall was reading any global changes to the theme style in WordPress as a potential attack. Here is one of the error messages in part:

ModSecurity: Access denied with code 418 (phase 2). Operator GE matched 7 at TX:anomaly_score. [file "/dh/apache2/template/etc/mod_sec3_CRS/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "93"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 105)"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.2"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "www.marynotari.com"] [uri "/wp-json/wp/v2/global-styles/1039"] [unique_id "Y@w7osDNq2Y@UP15HZRN9gAAAAE"], referer: https://www.marynotari.com/wp-admin/site-editor.php?postType=page&postId=431

After some googling I found that disabling the firewall on the Dreamhost side solved the problem.

I’ve since contacted DreamHost with the issue. I’m deeply uncomfortable with not having that extra layer of security. Is there something that can be done about it on the WordPress side?

I have tried the suggestions on this post. When I check my error logs, I see multiple errors that seem to indicate that whenever I’ve tried to change the global styles on my website, it reads as an attack on my database.

This is where I’ve hit the limit of my knowledge. Can anyone help?

I don’t know what to do. I want to edit the home page and always “Saving Failed”. I use Twenty Twenty-Three theme.