Hello everyone, I hope this message finds you well.
I am currently facing an issue with my CodeIgniter application where ModSecurity is triggering false positives, resulting in access being denied with a 403 error. The logs indicate that requests to specific URIs, such as /login/agregando_v_cac , are being blocked due to rules related to remote file injection attacks.
Here are some details from the logs:
ModSecurity ID: 340162 and 340163
Error Message: "Unauthorized URL detected as argument"
Request Method: POST
It seems that ModSecurity is interpreting certain parameters or headers in my requests as potentially malicious, which is causing these blocks. I suspect this might be due to special characters or patterns in the data being sent.
I would greatly appreciate any guidance on how to modify my PHP code or adjust my application’s request handling to prevent these false positives.Â
Are there specific practices or code adjustments in CodeIgniter that could help mitigate this issue?
