[wp-trac] [WordPress Trac] #14413: MOD_SECURITY BLOCK

Sun Jul 25 03:33:02 UTC 2010

#14413: MOD_SECURITY BLOCK
--------------------------+-------------------------------------------------
 Reporter:  mrgerbeck     |       Owner:                 
     Type:  defect (bug)  |      Status:  new            
 Priority:  normal        |   Milestone:  Awaiting Review
Component:  General       |     Version:  3.0            
 Severity:  blocker       |    Keywords:                 
--------------------------+-------------------------------------------------
 Wordpress 3.0 Generates the following MOD_SECURITY2 error when attempting
 to use the "widgets" function:

 [Sun Jul 25 03:21:23 2010] [error] [client 76.95.181.93] ModSecurity:
 Access denied with code 500 (phase 4). Pattern match
 "<b>Warning<\\/b>.{0,100}?:.{0,1000}?\\bon line\\b" at RESPONSE_BODY.
 [file
 "/usr/local/etc/apache22/Includes/mod_security2/modsecurity_crs_50_outbound.conf"]
 [line "42"] [id "970009"] [msg "PHP Information Leakage"] [severity
 "WARNING"] [tag "LEAKAGE/ERRORS"] [hostname "[snip]"] [uri "/wp-
 admin/widgets.php"] [unique_id "[snip]"]

-- 
Ticket URL: <http://core.trac.wordpress.org/ticket/14413>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software