403 “potentially unsafe” error

You might want to check the Wordfence firewall rules. I’m using Gravity Forms and there was a -200 HTTP error being thrown when some users tried to upload a file. It was very sporadic and did not happen for every user. The rule that was causing the issue for me was the last rule, Malicious File Upload (PHP). Once I unchecked that rule the error stopped appearing. The inspector also showed a 403 when attempting to upload, but Gravity Forms displayed a -200. You can see the thread I started here.

• This reply was modified 8 years, 5 months ago by mantonio77.

Hi zetoun17,
We are aware of this issue and it will be addressed soon in the next update.
For now, you can try deactivating the last firewall rule “Malicious File Upload (PHP)” in (Wordfence > Firewall => Rules) as suggested by @mantonio77

Thanks.

• This reply was modified 8 years, 5 months ago by wfalaa.

Hi
thank you mantonio77 and wfalaa for your answers
i set the firewall status to “learning mode” and unchecked the rule “Malicious File Upload (PHP)”

@wfalaa could you add a log section to show all blocked requests in the next update ? or an email alert ?

You can now update to version 6.2.3 which should resolve this firewall rule issue.

@zetoun17 If I understand you correctly, you can get a list of requests blocked by Firewall from (Wordfence > Live Traffic) and filter the traffic by “Blocked By Firewall”.

Let me know if you have any further question,
Thanks.

@wfalaa yes, this is exactly what i was looking for, thank you.
“live traffic” should be named “logged traffic”

“live traffic” should be named “logged traffic”

Why? What makes you think that?? The Live Traffic page is indeed showing “Live” site traffic…

• This reply was modified 8 years, 4 months ago by bluebearmedia.