[Plugin: Better WP Security] BUG: "Filter Suspicious Query Strings" blocks utf-8 search GE | WordPress.org

Resolved Mick Levin
(@mick-levin)

11 years, 10 months ago

Hello,

In case the search form of the theme is passing the parameter via GET, and the UTF-8 text is being searched (trying cyrillic), the plugin blocks it due to the “Filter Suspicious Query Strings” setting on.

In particular, this line in .htaccess blocks it:

RewriteCond %{QUERY_STRING} ^.*(%0|%A|%B|%C|%D|%E|%F|127\.0).* [NC,OR]

The search URL is:

http://xyz/?s=%D1%82%D0%B5%D1%81%D1%82

Do you think that could be worked around by allowing UTF-8 if they come under ?s= or &s= ?

Thank you.

http://wordpress.org/extend/plugins/better-wp-security/

Viewing 1 replies (of 1 total)

Bit51 (part of the iThemes family)
(@bit51)

11 years, 10 months ago

I’ll take a look and see if I can’t open up the charset for search variables via get.

Viewing 1 replies (of 1 total)

The topic ‘[Plugin: Better WP Security] BUG: "Filter Suspicious Query Strings" blocks utf-8 search GE’ is closed to new replies.

Tags

utf-8

In: Plugins
1 reply
2 participants
Last reply from: Bit51 (part of the iThemes family)
Last activity: 11 years, 10 months ago
Status: resolved