Menu
  1. Forum
  3. Securitycheck Pro
  5. Newbies area
  7. BreezingForms cannot add new forms after 3.2 upgrade

Topic-icon BreezingForms cannot add new forms after 3.2 upgrade

  • runelog
  • runelog's Avatar Topic Author
  • Offline
  • Fresh Boarder
  • Fresh Boarder
More
2 weeks 1 day ago #8146 by runelog
BreezingForms cannot add new forms after 3.2 upgrade was created by runelog
Hi
After I upgraded to 3.2 I cannot add new forms when logged in admin console. SecurityCheck reports possible xss attack.

Existing forms works ok.

Any other that has this issue?

Please Log in or Create an account to join the conversation.

More
2 weeks 1 day ago #8147 by Jose
Replied by Jose on topic BreezingForms cannot add new forms after 3.2 upgrade
Hi runelog,

No firewall rules have been touch in this version; is the rule configured to filter all html tags? If so maybe new forms have some code into them and this is why the rule is applied.

Try setting the rule to not filter all html tags (Waf configuration -> Filter exceptions -> XSS tab -> Strip all tags -> No).

Regards,
Jose

Please Log in or Create an account to join the conversation.

  • runelog
  • runelog's Avatar Topic Author
  • Offline
  • Fresh Boarder
  • Fresh Boarder
More
2 weeks 1 day ago - 2 weeks 1 day ago #8148 by runelog
Replied by runelog on topic BreezingForms cannot add new forms after 3.2 upgrade
Thanks. I added com_breezingforms as exception and now it works. Is this a possible security risk?

Rune
Last edit: 2 weeks 1 day ago by runelog.

Please Log in or Create an account to join the conversation.

More
2 weeks 1 day ago #8149 by Jose
Replied by Jose on topic BreezingForms cannot add new forms after 3.2 upgrade
You're welcome Rune.

By default no exception is applied if the extension has known vulnerabilities:


Obviously if there is a not known vulnerability or a zero-day vulnerability you will not be fully protected, but we have to deal with that risk...

Regards,
Jose
Attachments:

Please Log in or Create an account to join the conversation.

  1. Forum
  3. Securitycheck Pro
  5. Newbies area
  7. BreezingForms cannot add new forms after 3.2 upgrade
Time to create page: 0.085 seconds
Powered by Kunena Forum

In order to provide you with the best online experience this website uses cookies.

By using our website, you agree to our use of cookies.

I agree

Login or Sign In