404 Blocked Plugin Upload

  • Resolved Logan

    (@cultidev)


    2 years ago

    Hi All,

    When uploading the plugin Bodycommerce by DiviEngine, I get “A potentially unsafe operation has been detected in your request to this site”.

    I read in the docs I can allowlist the block but this is happening on a sub-domain and the blocked interaction is not showing up on Live Traffic.

    I tried installing Wordfence on the sub-domain and recreating the 404 error and it still did not show on the Live Traffic list.

    I also tried disabling the firewall and that also did not work and I also tried disabling the whole plugin and that also did not work.

    How can I fix this?

    Your assistance will be greatly appreciated.

    Kind regards
    Logan

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Support wfpeter

    (@wfpeter)

    Hi @cultidev,

    What’s interesting is that the “A potentially unsafe operation…” message sounds like a Wordfence block that could be tackled with disabling a firewall rule, but you’ve also stated that uploads didn’t work when Wordfence was taken out of the equation altogether. I would also expect Wordfence to generate a 503 error in your Live Traffic, rather than a 404 Not Found page so there’s a chance there is an issue with the plugin’s upload success/fail page redirecting you to a non-existent URL.

    What happened when Wordfence was disabled? Did you see a different error message, a blank page, or something else entirely?

    404s are not logged as security events by default, so it’d be quite helpful to temporarily switch your Wordfence > Live Traffic logging mode to ALL TRAFFIC and trying again. You should now see the 404s there. Before turning it back to SECURITY ONLY, could you expand the Live Traffic entry for the upload failure and show it to me here using a service like Snipboard? You can obscure any sensitive information like IPs before pasting the link in here.

    Thanks,

    Peter.

    Thread Starter Logan

    (@cultidev)

    HI,

    My apologies I mean “403 Forbidden”. I got on the same page no matter what I did.

    I disabled the firewall. Disabled the plugin. Installed the plugin on the subdomain and then disabled the firewall. I disabled the plugin on the subdomain.

    I recreated the 403 error multiple times and checked the live traffic log every time and nothing changed. I got the same message every time from Wordfence.

    “A potentially unsafe operation has been detected in your request to this site”

    Kindly see the error here: https://snipboard.io/xEcb1M.jpg

    I uploaded an older version of that exact same plugin and I did not get the error and was able to upload the plugin. I’m guessing it’s connected to that version of the plugin.

    Kind regards
    Logan

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘404 Blocked Plugin Upload’ is closed to new replies.