Hello!

I don’t know since when, but I think only since some days, it’s not possible to post a standard BB-Code on my forum system anymore.

For example, when I try a reply to a thread with this posting:

[url=https://www.mywebsite.com/forum/showthread.php?&postid=12345678#post12345678]Link Name[/url]

It will result in a captcha (that’s ok), but the forum system is not able to post this posting anymore (error: “No post selected”), so it seems that CloudFlare is not transferring all required information over the captcha anymore.

This was possible all the time, but something changed during the last days. Does anyone know what or which rule I might try to disable to get this working again?

Why do you think this is related to Cloudflare? What steps have you taken to ensure it is related to Cloudflare?

I did not change anything on the forum (or website or server), but realized that CloudFlare added some new rules. So it’s just a guess that CloudFlare might have added some new security features that affect my forum system somehow.

Thats very unlikely. First check if you can verify that issue really is because of Cloudflare. For starters you can pause Cloudflare for example.

Thanks for the help!

It is definitely CloudFlare related.

I did some more testing and noticed that the problem occurs when my users are getting a challenge/captcha AND try to post a reply with specific URLs in it. In that case some information are not beeing “transferred” correctly from the user through the Captcha and back to my website (something seems to be missing!?).

I disabled all OWASP rules regarding “IE XSS Filters - Attack Detected” and now the users are not getting a challenge anymore and can therefor post again. I know that’s not the real solution, but for the moment it works.

This topic was automatically closed after 30 days. New replies are no longer allowed.