REQUEST-920-PROTOCOL-ENFORCEMENT ruleset from OWASP

  • selesti

    (@selesti)


    4 years, 6 months ago

    Hi,

    A CF7 form we setup for a client site is triggering a REQUEST-920-PROTOCOL-ENFORCEMENT ruleset from OWASP.

    Looking at the logs, This ms doc confirms that the rule ID 920140 is connected to “Multipart request body failed strict validation”.

    This issue is intermittent, so the form fails for some users but not all, however we have found that whilst looking at the Azure logs it states it connected to /wp-json/contact-form-7/v1/contact-forms/912/feedback.
    Looking at /wp-content/plugins/contact-form-7/includes/rest-api.php I can not see any reference to form encoding or multipart.

    We are at a lose to what would be triggering the REQUEST-920-PROTOCOL-ENFORCEMENT ruleset and preventing forms from being sent fro some users.

    Any help appreciated on this one 🙂

    Server:
    Azure
    PHP 7.4
    WP 5.8.1
    CF7 5.4.2

The topic ‘REQUEST-920-PROTOCOL-ENFORCEMENT ruleset from OWASP’ is closed to new replies.