Theme options forbidden - by mostwombat - on WordPress WooCommerce support

This topic has 4 replies, 2 voices, and was last updated 4 years, 5 months ago ago by Olga Barlow

  • Avatar: mostwombat
    mostwombat
    Participant
    July 7, 2020 at 09:04

    Hello,
    I have a support question…
    Every time that I click customization in any page or theme options though the xstore menu, I get a forbidden (you don’t have permission to access…) warning and nothing seems to work on the right side of the screen. Although when I make changes to the things on the left, I can see results when I reload the website outside the customization menu…

    Do you have any idea about this?
    Thanks in advance…

    3 Answers
    Avatar: Olga Barlow
    Olga Barlow
    Support staff
    July 7, 2020 at 18:57

    Hello,

    This error could be related either third-party plugin that you use (for example some optimization plugin like SG Optimized) or by your server settings. Check the server error logs. What errors do you have there?

    Regards

    Avatar: mostwombat
    mostwombat
    Participant
    July 8, 2020 at 14:26

    This is the error generated :

    [Wed Jul 08 16:21:29.213426 2020] [:error] [pid 29193:tid 140082270844672] [client 2a02:587:ee08:7a00:467:6dd7:1b46:5e29:55766] [client 2a02:587:ee08:7a00:467:6dd7:1b46:5e29] ModSecurity: Access denied with code 403 (phase 2). Pattern match “-moz-binding\\\\b|@import\\\\b|background\\\\b[^a-zA-Z0-9_]{0,}?:[^a-zA-Z0-9_]{0,}?url|background-image\\\\b[^a-zA-Z0-9_]{0,}?:|behavior\\\\b[^a-zA-Z0-9_]{0,}?:[^a-zA-Z0-9_]{0,}?url|expression\\\\b[^a-zA-Z0-9_]{0,}?\\\\(” at ARGS:customized. [file “/etc/httpd/conf/modsecurity.d/rules/comodo/08_XSS_XSS.conf”] [line “229”] [id “212800”] [rev “4”] [msg “COMODO WAF: XSS Attack Detected||www.eikonashop.gr|F|2”] [data “Matched Data: background-image\\x22: found within ARGS:customized: {\\x22top_header_background_et-desktop\\x22:{\\x22background-color\\x22:\\x22#ffffff\\x22,\\x22background-image\\x22:\\x22\\x22,\\x22background-repeat\\x22:\\x22no-repeat\\x22,\\x22background-position\\x22:\\x22centercenter\\x22,\\x22background-size\\x22:\\x22\\x22,\\x22background-attachment\\x22:\\x22\\x22},\\x22top_header_background_et-mobile\\x22:{\\x22background-color\\x22:\\x22#ffffff\\x22,\\x22background-image\\x22:\\x22\\x22,\\x22background-repeat\\x22:\\x22no-repeat\\x22…”] [severity “CRITICAL”] [tag “CWAF”] [tag “XSS”] [hostname “www.eikonashop.gr”] [uri “/d3m0/”] [unique_id “XwXIWaZY8CUzg@3WFV7X4AAAAGI”], referer: http://www.eikonashop.gr/d3m0/wp-admin/customize.php?url=http%3A%2F%2Fwww.eikonashop.gr%2Fd3m0%2F

    Any suggestions?

    Avatar: Olga Barlow
    Olga Barlow
    Support staff
    July 8, 2020 at 16:42

    Hello,

    I would suggest you contact your hosting provider about this issue. It looks like some limits from the server-side and the customizer request is blocked because of it.

    Regards

  • Viewing 4 results - 1 through 4 (of 4 total)

You must be logged in to reply to this topic.Log in/Sign up

We're using our own and third-party cookies to improve your experience and our website. Keep on browsing to accept our cookie policy.