Title: 403 Security Message
Last modified: April 4, 2017

---

# 403 Security Message

 *  [wpweaver](https://wordpress.org/support/users/wpweaver/)
 * (@wpweaver)
 * [9 years, 1 month ago](https://wordpress.org/support/topic/403-security-message/)
 * If I try to enter this simple, code into a comment:
 * <div class=”qcf-main qcf-style default”><div id=”none”><div class=”qcf-state 
   qcf-ajax-loading qcf-style default”><h2>Checking…</h2></div><div class=”qcf-state
   qcf-ajax-error qcf-style default”><div align=”center”>Ouch! There was a server
   error.<br>[Retry »](https://wordpress.org/support/topic/403-security-message/void(0);?output_format=md)
   </div></div><div class=”qcf-state qcf-sending qcf-style default”><h2>Sending 
   message…</h2></div><div class=”qcf-state qcf-form-wrapper”>
 * I get:
 * 403 Forbidden
 * A potentially unsafe operation has been detected in your request to this site,
   and has been blocked by Wordfence.
 * If you are an administrator and you are certain this is a false positive, you
   can automatically whitelist this request and repeat the same action.
 *  I am certain this is a false positive.
 * Whitelist This Action
 * ——-
    Seriously? The code in question was all escaped (< to &lt; and so on). It
   seems that the ‘onclick=”retryValidation(this)’ was triggering the error. I’m
   trying to run a bbPress technical support forum, and this sort of content in 
   a comment happens all the time. How do I disable this behavior – or better yet–
   fix you checking code to tell the difference between real code an escaped code.
    -  This topic was modified 9 years, 1 month ago by [wpweaver](https://wordpress.org/support/users/wpweaver/).
      Reason: allow &lt to display

Viewing 1 replies (of 1 total)

 *  Plugin Support [wfphil](https://wordpress.org/support/users/wfphil/)
 * (@wfphil)
 * [9 years, 1 month ago](https://wordpress.org/support/topic/403-security-message/#post-8994865)
 * Hello,
 * Sorry to hear that you are having this trouble.
 * On the “**Live Traffic**” page you will be able to see exactly which rule blocked
   the code in the comment and you can choose to disable that rule on the “**Firewall**”
   page, though this is not recommended from a security perspective.

Viewing 1 replies (of 1 total)

The topic ‘403 Security Message’ is closed to new replies.

 * ![](https://ps.w.org/wordfence/assets/icon.svg?rev=2070865)
 * [Wordfence Security - Firewall, Malware Scan, and Login Security](https://wordpress.org/plugins/wordfence/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/wordfence/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/wordfence/)
 * [Active Topics](https://wordpress.org/support/plugin/wordfence/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/wordfence/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/wordfence/reviews/)

 * 1 reply
 * 2 participants
 * Last reply from: [wfphil](https://wordpress.org/support/users/wfphil/)
 * Last activity: [9 years, 1 month ago](https://wordpress.org/support/topic/403-security-message/#post-8994865)
 * Status: not resolved