HTTP response code 503 – Your access to this site has been limited

  • Resolved McFarnell

    (@mcfarnell)


    1 year, 10 months ago

    Hi there,

    I have a php file, not part of WordPress, that allows my client to upload a file to their web site. WordFence is blocking this action. We are getting a WordFence themed 403 page.

    I have tried turning on learning mode and doing this action (while logged out and while logged in), and it doesn’t add an exception.

    I have tried adding my own exception under the Allow List, but I’m unsure of what to put for the Param Type and Param Name. It’s a file that’s being uploaded through a form, using Post. The form field with the file is called “file”. So should the Param Type of Post Body, and the Param Name be “file”?

    Please help!

Viewing 1 replies (of 1 total)
  • Plugin Support wfpeter

    (@wfpeter)

    Hi @mcfarnell, thanks for getting in touch.

    If you’re experiening problems with Wordfence-branded 403s when using your custom form, try first viewing your Live Traffic afterwards to see if the blocks are being picked up there. You should be able to see which rule is causing the block by clicking that line (or “eye” icon) to expand it. Sometimes you are presented with a “ADD PARAM TO FIREWALL ALLOWLIST” button here that could solve any problems going forward.

    If this button doesn’t appear, or it seems you need to manually take action there are usually 3 possible rules involved. “Malicious File Upload“, “Malicious File Upload (PHP)“, or “Malicious File Upload (Patterns)”. These rules can be found in Wordfence > All Options > Firewall Options > Advanced Firewall Options > Rules, after expanding the list. There are layers to how uploaded files are checked, so having to turn one of these rules off to fix your issue should still ensure malicious files are caught at a different stage of the checking process. Try disabling/enabling them one-by-one to see which one(s) can be permanently turned off to prevent the upload issue reoccurring for your users.

    Let me know how you get on!
    Peter.

Viewing 1 replies (of 1 total)
  • The topic ‘HTTP response code 503 – Your access to this site has been limited’ is closed to new replies.