Cannot figure out how to bypass/cancel/remove OWASP protection

acquiredsense · March 18, 2025, 9:13am

What is the name of the domain?

What is the issue you’re encountering

Randomly getting 403 errors during AJAX calls on WordPress

What steps have you taken to resolve the issue?

I went to WAF>Managed Rules but it just prompts me to upgrade. Everywhere else I see instructions on disabling OWASP there but I can’t find it.

What is the current SSL/TLS setting?

Full

What are the steps to reproduce the issue?

Random.

sjr · March 18, 2025, 7:23pm

Check your security event log for the reason the requests are being blocked or challenged…
https://dash.cloudflare.com/?to=/:account/:zone/security/events

The craft a WAF custom rule as required to allow those requests. If it is due to the managed rulesets, you can select to skip those in your WAF custom rule.

system · April 2, 2025, 7:24pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
403 error for wp-admin/admin-ajax.php (With Fix) Website, Application, Performance	9	8985	February 18, 2025
403 Forbidden on front-end pages Security	1	1998	December 29, 2021
[APO] WordPress + Woocommerce (OWASP) Automatic Platform Optimization	2	453	February 24, 2024
Wp-admin/admin-ajax.php returning a 403 Wordpress Security	4	7234	November 12, 2021
Cloudflare WAF Preventing Certain Pages From Updating Security	17	2801	September 9, 2021