SQL-injection detected when editing Product category description

  • Resolved Jean Werk

    (@brightbluegum)


    3 months, 3 weeks ago

    On a WooCommerce site, a staff member with the Shop Manager role cannot update Product category descriptions. She gets a message saying: “Blocked by Web Application Firewall: SQL-injection detected.”

    On the Firewall tab, I’ve clicked “Allow” but the IP address (IPv6?) keeps changing.

    View post on imgur.com
    Screenshot with “Blocked by Web Application Firewall: SQL-injection detected.” error message

    She can use other admin pages without problems. She’s only blocked on the Product category page: /wp-admin/edit-tags.php?taxonomy=product_cat&post_type=product

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Support dimitrycleantalk

    (@dimitrycleantalk)

    Hello @brightbluegum,

    I’ve tested Woocommerce with our plugin and could not reproduce this issue. Can you reach out to our support team so we can gather some more information from you concerning this issue? Please, create a private ticket:
    https://cleantalk.org/my/support/open

    As a temporary solution, you can disable the SQL-injection check option in our plugin settings.

    Thread Starter Jean Werk

    (@brightbluegum)

    Will do. Thanks.

    Plugin Support dimitrycleantalk

    (@dimitrycleantalk)

    We’ve received your message in our ticket system. We will continue our conversation there.

    Plugin Support SergeM

    (@serge00)

    We have fixed the issue on the Cloud side. Now the CleanTalk plugin correctly identifies if the website requests should be approved or blocked.

    I’m marking this topic as “resolved”. If you have any further questions, you can start a new topic anytime.

Viewing 4 replies - 1 through 4 (of 4 total)
  • You must be logged in to reply to this topic.