Hi, I've just discovered that NinjaFirewall blocks the preview function when editing a post or page.
When I'm editing a page in WordPress, there is a button on the right called "Preview Changes", near the Publish button. The Preview Changes button will make a new browser window appear with a preview of the page, without saving the page.
Normally the URL of the preview page looks something like this:
However, when I clicked this button just now, it opened a new browser window and the URL changed to:
...And it displayed the standard NinjaFirewall "403" error message ("your request cannot be proceeded").
I checked the firewall log, and it shows that it's being blocked with rule #100, and it refers to "XSS (HTML tag)". But I don't understand why or what this means.
I know that I can just disable rule 100, but I'd rather not disable any rules because that might allow a hacker to gain access through whatever feature is being protected by rule 100.
Is there any way to fix this so that NinjaFirewall does not block the "Preview Changes" button from working? I would have thought, that NinjaFirewall would not block internal features which are part of WP core?