Cloudflare WAF is blocking WordPress Plugin

shivamtyagi.me · June 17, 2022, 3:21pm

Hi there,

We have Cloudflare and Cloudflare WAF activated on our WordPress sites and it is actively blocking our All in One SEO plugin from saving any changes.

The requests that are being blocked are -
/wp-json/aioseo/v1/activate
/wp-json/aioseo/v1/ping
/wp-json/aioseo/v1/options

I’ve tried adding this rule in WAF settings but it doesn’t work -
Field: URI Path
Operator: Contains
Value: /wp-json/aioseo/

Here are the Page Rules I’ve added for Cloudflare -
mydomain/wp-json/aioseo/*

Here’s a screenshot from one of our sites -

Can you please help us figure out the exact rule required to allow these requests?

Thanks!

twitter-luckyankit · June 17, 2022, 5:45pm

It should help.

system · July 2, 2022, 5:46pm

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Cloudflare started blocking my All In One SEO plugin Security	4	4220	February 8, 2021
Cloudflare WAF is blocking incoming request to WP JSON Security	1	2607	September 24, 2021
Wordpress content update blocked as XSS by WAF Security	2	2416	August 7, 2022
Cloudflare WAF Preventing Certain Pages From Updating Security	17	2796	September 9, 2021
WAF Rule not working as intended Rules	5	2657	October 17, 2023