Tilde issue on url with json calls

  • Enzo

    (@enzorabante)


    5 years, 7 months ago

    Hi, unfortunately I received again an attack temptative (from China) using the TILDE (~) on the code of your plugin (used for example on link to go back).
    I immediately disabled vulnerability on htaccess but on this way some functionalities are not working properly.
    Ex: /action~week/page_offset~-1/time_limit~1492898400/request_format~json/

    To fix teh issue I added on htaccess: RedirectMatch 403 (?i)(~)

    Is this something you are aware of?

Viewing 1 replies (of 1 total)

  • Hi @enzorabante,

    We are not aware of this, but thank you for taking the time to report this issue. I’ll forward this to the development team for investigation.

    Thanks,
    Ben

Viewing 1 replies (of 1 total)
  • The topic ‘Tilde issue on url with json calls’ is closed to new replies.