Return to previous page

Theme options forbidden - by mostwombat - on WordPress WooCommerce support

This topic has 4 replies, 2 voices, and was last updated 4 years, 4 months ago ago by Olga Barlow

mostwombat

Participant

July 7, 2020 at 09:04

Hello,
I have a support question…
Every time that I click customization in any page or theme options though the xstore menu, I get a forbidden (you don’t have permission to access…) warning and nothing seems to work on the right side of the screen. Although when I make changes to the things on the left, I can see results when I reload the website outside the customization menu…

Do you have any idea about this?
Thanks in advance…

#243507 Copied Theme version: 6.3.7 WooCommerce version: 4.2.2

3 Answers

Olga Barlow

Support staff

July 7, 2020 at 18:57

Hello,

This error could be related either third-party plugin that you use (for example some optimization plugin like SG Optimized) or by your server settings. Check the server error logs. What errors do you have there?

Regards

#243572 Copied

mostwombat

Participant

July 8, 2020 at 14:26

This is the error generated :

[Wed Jul 08 16:21:29.213426 2020] [:error] [pid 29193:tid 140082270844672] [client 2a02:587:ee08:7a00:467:6dd7:1b46:5e29:55766] [client 2a02:587:ee08:7a00:467:6dd7:1b46:5e29] ModSecurity: Access denied with code 403 (phase 2). Pattern match “-moz-binding\\\\b|@import\\\\b|background\\\\b[^a-zA-Z0-9_]{0,}?:[^a-zA-Z0-9_]{0,}?url|background-image\\\\b[^a-zA-Z0-9_]{0,}?:|behavior\\\\b[^a-zA-Z0-9_]{0,}?:[^a-zA-Z0-9_]{0,}?url|expression\\\\b[^a-zA-Z0-9_]{0,}?\\\\(” at ARGS:customized. [file “/etc/httpd/conf/modsecurity.d/rules/comodo/08_XSS_XSS.conf”] [line “229”] [id “212800”] [rev “4”] [msg “COMODO WAF: XSS Attack Detected||www.eikonashop.gr|F|2”] [data “Matched Data: background-image\\x22: found within ARGS:customized: {\\x22top_header_background_et-desktop\\x22:{\\x22background-color\\x22:\\x22#ffffff\\x22,\\x22background-image\\x22:\\x22\\x22,\\x22background-repeat\\x22:\\x22no-repeat\\x22,\\x22background-position\\x22:\\x22centercenter\\x22,\\x22background-size\\x22:\\x22\\x22,\\x22background-attachment\\x22:\\x22\\x22},\\x22top_header_background_et-mobile\\x22:{\\x22background-color\\x22:\\x22#ffffff\\x22,\\x22background-image\\x22:\\x22\\x22,\\x22background-repeat\\x22:\\x22no-repeat\\x22…”] [severity “CRITICAL”] [tag “CWAF”] [tag “XSS”] [hostname “www.eikonashop.gr”] [uri “/d3m0/”] [unique_id “XwXIWaZY8CUzg@3WFV7X4AAAAGI”], referer: http://www.eikonashop.gr/d3m0/wp-admin/customize.php?url=http%3A%2F%2Fwww.eikonashop.gr%2Fd3m0%2F

Any suggestions?

#243704 Copied

Olga Barlow

Support staff

July 8, 2020 at 16:42

Hello,

I would suggest you contact your hosting provider about this issue. It looks like some limits from the server-side and the customizer request is blocked because of it.

Regards

#243720 Copied
Viewing 4 results - 1 through 4 (of 4 total)