Author Topic: Wordpress PNG Upload  (Read 281 times)

Offline jynxy

  • Newbie
  • *
  • Posts: 1
Wordpress PNG Upload
« on: April 29, 2018, 11:24:00 AM »

Not sure why a png file is triggering an upload issue, i have narrowed it down to 05_Global_Backdoor.conf

in particular

SecRule REQUEST_FILENAME "root\.exe" \
        "id:214110,msg:'COMODO WAF: Backdoor access||%{tx.domain}|%{tx.mode}|2',phase:2,capture,block,setvar:'tx.trojan_points=+1',setvar:'tx.points=+%{tx.points_limit4}',logdata:'Matched Data: %{TX.0} found within %{MATCHED_VAR_NAME}: %{MATCHED_VAR}',ctl:auditLogParts=+E,t:none,t:urlDecodeUni,t:htmlEntityDecode,t:lowercase,rev:1,severity:2,tag:'CWAF',tag:'Backdoor'"

you can view the png file here

If i copy the image and create a new file it uploads fine, so i believe something is triggering it within the code.

Any advise


Offline SergeiP

  • Moderator
  • Comodo's Hero
  • *****
  • Posts: 205
Re: Wordpress PNG Upload
« Reply #1 on: April 30, 2018, 05:00:11 AM »
Hello jynxy. Please provide modsecurty audit.log for this event.


Free Endpoint Protection
Seo4Smf 2.0 © SmfMod.Com Smf Destek