Plugin Author
Joe
(@morehawes)
Hi @skargn,
Apologies for the delay. This seems like an odd bug. I am not at my computer right now, but I will try to investigate further and get back to you soon.
Do you know what version of PHP your server is running? Or if you have anything “unusual” about your setup/environment?
Cheers,
Joe
Thank you for the reply. Our server is running PHP version 8.1.8 and there is nothing unusual about the setup.
Plugin Author
Joe
(@morehawes)
Hi @skargn,
Thanks for the extra information. So far I have not been able to replicate this on my end.
Are you receiving any errors in your PHP error log (stored on your server, usually in a file called php_error.log)?
Cheers,
Joe
[Tue Jul 19 12:01:19.177395 2022] [:error] [pid 30752:tid 140008736380672] [client 2.86.240.191:49672] [client 2.86.240.191] ModSecurity: Access denied with code 403 (phase 2). Pattern match “(?i)((?:\\\\bx(?:link:href|html|mlns)|!ENTITY\\\\b.*?\\\\b(?:SYSTEM|PUBLIC)|\\\\bdata:text\\\\/html))” at ARGS:map_data. [file “/etc/httpd/conf/modsecurity.d/rules/comodo_free/07_XSS_XSS.conf”] [line “173”] [id “213060”] [rev “5”] [msg “COMODO WAF: XSS Filter – Category 3: Attribute Vector||exosports.gr|F|2”] [severity “CRITICAL”] [tag “CWAF”] [tag “XSS”] [hostname “exosports.gr”] [uri “/”] [unique_id “YtZy1UcbczqEKU81fK7pfwAAAEo”], referer: https://exosports.gr/map/mtb-ancient-iklaina/
On the Web Application Firewall (Rule set Comodo (free) running on Apache (ModSecurity 2.9)) I switched off security rule ID 213060 and deactivated tags CWAF & XSS but nothing changed.
[client 2.86.240.191] ModSecurity: Access denied with code 403 (phase 2). Pattern match “(?i)((?:\\\\bx(?:link:href|html|mlns)|!ENTITY\\\\b.*?\\\\b(?:SYSTEM|PUBLIC)|\\\\bdata:text\\\\/html))” at ARGS:map_data. [file “/etc/httpd/conf/modsecurity.d/rules/comodo_free/07_XSS_XSS.conf”] [line “173”] [id “213060”] [rev “5”] [msg “COMODO WAF: XSS Filter – Category 3: Attribute Vector||exosports.gr|F|2”] [severity “CRITICAL”] [tag “CWAF”] [tag “XSS”] [hostname “exosports.gr”] [uri “/”] [unique_id “YtZ6VMX1uaA4VLMJGZqmJgAAANw”], referer: https://exosports.gr/map/mtb-nestors-kingdom/
It took some time on the server to update the firewall rules and now it works. I hope this was the correct solution.
Plugin Author
Joe
(@morehawes)
Hi @skargn,
I’m glad you got this working and thanks again for the extra detail. This is a first for me, so it’s hard to say how common this issue is; but thanks for putting it on my radar and I’m sure others in the same position will find this useful.
I am currently in the process of overhauling the plugin code and have already changed how Waymark handles these downloads. Hopefully future releases will eliminate the need for your fix.
Please do let me know if you come across anything else!
Cheers,
Joe
