A potentially unsafe operation has been detected…

  • Resolved mjtscott

    (@mjtscott)


    1 year, 7 months ago

    I tried to create a code snippet using the WP Code Lite snippets plugin. The code is here: https://www.altmann.de/en/blog-en/code-snippet-gdpr-compliant-youtube-videos/

    When I tried to save the snippet, I got a Wordfence warning page with the error shown below. Is it just being ultra careful? I am confident in the developer of the snippet code but the warning scared me a bit!
    Thanks

    “A potentially unsafe operation has been detected in your request to this site

    Your access to this service has been limited. (HTTP response code 403)

    If you think you have been blocked in error, contact the owner of this site for assistance.

    If you are an administrator and you are certain this is a false positive, you can automatically allowlist this request and repeat the same action.”

Viewing 1 replies (of 1 total)
  • Plugin Support wfpeter

    (@wfpeter)

    Hi @mjtscott, thanks for your question.

    It does look most likely to be a false-positive in the context of the code snippets you’ve linked to. If you’re happy that the snippet you’re adding is safe to include on the site, there are a couple of actions you can take.

    Firstly, when “normal” site operations are being blocked when they shouldn’t, Learning Mode could possibly help you out.

    From the Wordfence Dashboard click on Manage WAF. Then you will see Basic Firewall Options > Web Application Firewall Status. Change the option to Learning Mode. Replicate the actions or page loads that were previously being blocked to teach Wordfence what’s happening is normal and should be allowed in future. After you have finished, switch the WAF from Learning Mode back to Enabled and Protecting.

    If that doesn’t work, you can confirm that they’re caused by a Wordfence block by taking a look at your Live Traffic. Do timestamps of the on-screen blocks you’re seeing match blocked actions in the table? You should be able to see which rule is causing the block by clicking that line (or “eye” icon) to expand it. Sometimes you are presented with a “ADD PARAM TO FIREWALL ALLOWLIST” button here that could solve any problems going forward. This button automatically inserts the URL and its required params to the Allowlisted URLs section of the plugin.

    Let me know how you get on!
    Peter.

Viewing 1 replies (of 1 total)
  • The topic ‘A potentially unsafe operation has been detected…’ is closed to new replies.