Tladi Posted October 19, 2023 Report Posted October 19, 2023 Hi guys, I can't access both client and admin urls, every time I try I get redirected to my main domain. This happened when I updated my Blesta version to 5.8.1 When I try to access the urls I get the following message sent to my mailbox. An intrusion attempt was detected using the PHPIDS plugin in Blesta. Below are the details regarding the incident:Name: COOKIE.twk_uuid_60f768....Value: {"uuid":"1.70gk1cdjSBYcoa32YXXP1Hi....","version":3,"domain":"example.co.za","ts":1697182...}URI: /IP: 41.144....User ID: 1Tags: sqli, id, lfi, xss, csrf, rfeImpact: 32 Below is my .htaccess file ######################################################## # package: minPHP # filename: .htaccess ######################################################## # Do not allow direct access to templates # or an unauthorized backdoor from CE <Files ~ "blesta2ce.php|\.(pdt)$"> order deny,allow deny from all </Files> # Protect against Clickjacking #Header append X-Frame-Options "SAMEORIGIN" RewriteEngine on # Disable Apache MultiViews since it # may conflict with the GUI installer <IfModule mod_negotiation.c> Options -MultiViews </IfModule> # Force HTTPS #RewriteCond %{HTTPS} !=on #RewriteRule ^ https://%{HTTP_HOST}%{REQUEST_URI} [R=307,NE,L] RewriteCond %{REQUEST_FILENAME} !-d RewriteCond %{REQUEST_FILENAME} !-f RewriteRule ^(.*)$ index.php RewriteCond %{REQUEST_URI} ^(.*)/install.php$ RewriteRule install.php %1/install/ [R=301,L] Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.