XFileSharing Pro - 403 Forbidden error

Message
Author
ankurs
Posts: 1054
Joined: Mar 10, 2009 2:34 am

403 Forbidden error

#1 Postby ankurs » Mar 31, 2011 6:04 am

with Mod_security enabled, the script fails and starts giving 403 Forbidden errors

found this thread http://forums.hostgator.com/mod-securit ... 71394.html
"http:/" in form data ("Remote File Injection attempt in ARGS (MM)")
If you have a script that asks a user for a URL, and that user includes "http:/" somewhere in the form data, mod_security will kill that page as soon as the form is submitted. If you need to get a URL from your users, don't ask them for the full URL plus prefix; have them input "www.example.com" rather than "http://www.example.com", and add the schema prefix on the front programatically if you need it.
is it possible to fix the script ? or there is no other solution then disabling Mod_security

michalss
Posts: 41
Joined: Feb 08, 2010 1:31 pm

#2 Postby michalss » Mar 31, 2011 7:57 am

It does not have to be coz of mod_security. But it also could be proper permission to cgi-bin folder and files in it. Check if files are 755. mod_security affecting upload most likely, as far as i remeber.