adewandaru

This is their reply

The component you are using is attempting to get the phpinfo information of the server. This is considered as security risk and because of that is disabled in the mod_security rules. If you would like we can disable the mod_security for the following domains:

***

Keep in mind that in our mod_security rules there are large number of exploit prevention techniques which protect from known WordPress vulnerabilities. When the mod_security is disabled those protection will not longer apply for the domains in question.

If you would like to keep the protections active:

— You may consider creating manual backups for your website.
— You may contact the developers of the script and request version which will not have in it phpinfo requests.

Let us know how to proceed considering the above.

Looking forward to your reply.

Hi David, I use the premium version of Updraft Plus backup plugin. I recently having similar problem. The hosting is tmdhosting.com and it enables mod_security by default, and I cannot access the setting page of Updraft Plus. They are saying that because the plugin is using phpinfo() and thus conflicted with mod_security.

The remedy is thus disable mod_security, however I don’t think it is a long term remedy. Could you release an update which addressing this issue? I love the plugin and mod_security both. It should work together imho.