legit file upload blocked

  • I have a bespoke form on a site I have created. This is a fairly normal html form but has some file upload components. The files are actually emailed to someone – but also sanitised and stored outside of of public_html briefly before being emailed. The form also has a captcha.

    It was working fine for a while now (a couple of weeks) – however tonight I noticed the form wasn’t working when a file is attached and I got the following error instead:

    “A potentially unsafe operation has been detected in your request to this site.”

    I believe this is an error coming from Wordfence.

    I was able to get it to work again by removing the “File Upload (PHP)” rule from the list.

    Is this the right way to go about this or is there a safer method?

Viewing 1 replies (of 1 total)

  • Hi dna,
    a better way would be to set the Firewall in “Learning mode”, repeat the action that was getting blocked, check to see that an entry was added in the whitelist at the bottom of the Firewall page and then set the Firewall back to “Enabled and protecting”.

    This way you will teach the Firewall that this particular action is allowed but it will continue to block other actions matching that same rule (that could potentially be bad).

Viewing 1 replies (of 1 total)
  • The topic ‘legit file upload blocked’ is closed to new replies.