MOdSecurity problem

  • Hi there,

    i have a problem with a new theme i bought. My host e-mailed me this error:

    [ Moderator note: please wrap code in backticks or use the code button. ]

    ** Alert 1380562301.102121066: mail - modsecurity,access_denied,
2013 Sep 30 19:31:41 sl12-ch4->/var/log/httpd/audit_log
Rule: 340464 (level 9) -> 'Atomicorp.com WAF Rules: Remote File Injection
attempt in ARGS (admin.php) '
Src IP: 62.238.173.237
Src Location:[modsecurity] [client 62.238.173.237] [domain https://www.samplebien.com] [403]
[/20130930/20130930-1931/20130930-193139-NXFaWn8AAAEAD6zmQ7kAAACQ] [file"/etc/httpd/modsecurity.d/10_asl_rules.conf"] [line "1265"] [id "340464"] [rev
"54"] [msg "Atomicorp.com WAF Rules: Remote File Injection attempt in ARGS
(admin.php)"] [severity "CRITICAL"] Access denied with code 403 (phase 2).
Match of "rx ://%{SERVER_NAME}/" against "ARGS:behance" required.

    I have to fix it, but I dont know how and i cant find anywhere how to fix this.

    Can someone help me here :)?

    Thanks a lot!

Viewing 5 replies - 1 through 5 (of 5 total)
  • Moderator Jan Dembowski

    (@jdembowski)

    Forum Moderator and Brute Squad

    It sounds like that theme may be doing something Not Good™

    Or not. Have you tried contacting the theme author for support? If that does not happen with the Twenty Thirteen theme then it’s probably something the theme is attempting to do.

    Thread Starter JNKProductions

    (@jnkproductions)

    I will contact the theme maker. Because before i downloaded this new theme I did not have this problem…

    I will let u know!

    Thread Starter JNKProductions

    (@jnkproductions)

    The thememaker doesnt support this kind of problems he said… I contacted the hosting and they are not turning it off..

    What can I do? How should I fix this?

    Andrew Nevins

    (@anevins)

    WCLDN 2018 Contributor | Volunteer support

    Have you considered switching to a theme that www.ads-software.com supports: https://www.ads-software.com/themes/ ?

    Thread Starter JNKProductions

    (@jnkproductions)

    Hi,

    no my client wants to have this theme (from themeforest). And I already had to do the website over again because the other theme wasn’t working and the author didn’t replied on any contact.

    And now I got this… so I was wondering if there is a way to fix this problem without installing a whole new theme.

    im spending way to much time on this website hehe :p

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘MOdSecurity problem’ is closed to new replies.