WordPress.org

Ready to get started?Download WordPress

Forums

iThemes Security (formerly Better WP Security)
[resolved] [Plugin: Better WP Security] BUG: "Filter Suspicious Query Strings" blocks utf-8 search GE (2 posts)

  1. Mick Levin
    Member
    Posted 1 year ago #

    Hello,

    In case the search form of the theme is passing the parameter via GET, and the UTF-8 text is being searched (trying cyrillic), the plugin blocks it due to the "Filter Suspicious Query Strings" setting on.

    In particular, this line in .htaccess blocks it:

    RewriteCond %{QUERY_STRING} ^.*(%0|%A|%B|%C|%D|%E|%F|127\.0).* [NC,OR]

    The search URL is:

    http://xyz/?s=%D1%82%D0%B5%D1%81%D1%82

    Do you think that could be worked around by allowing UTF-8 if they come under ?s= or &s= ?

    Thank you.

    http://wordpress.org/extend/plugins/better-wp-security/

  2. I'll take a look and see if I can't open up the charset for search variables via get.

Topic Closed

This topic has been closed to new replies.

About this Plugin

About this Topic

Tags