I’m using GoDaddy for hosting and implemented their Securi security service a few months ago (after moving to SSL).
Since then, we’ve regularly but intermittently heard from customers trying to register for events that they’re being blocked by GoDaddy’s firewall.
We’ve tried to resolve this with GoDaddy several times but haven’t been successful.
Only today, for the first time, did I get the error myself (from my phone – I almost always test-register for events from a desktop/laptop browser), which let me see the specific reason for the error:
“An attempted XSS (cross site scripting) was detected and blocked.”
I’d just updated to 4.9.69 and I’m still getting the error.
Is there any history of this issue with Event Espresso, and if so, any solution having to do with the plugin?
I am not aware of this particular issue being an issue with Event Espresso. It sounds like either a hosting issue -or- there’s another plugin in the mix that’s leading to a cross site scripting attempt being detective. That might just be a false positive.
If you continue to see the error that says they’ve been blocked by GoDaddy’s firewall, it’d be good to make a note of the times when that’s happened and share that information with GoDaddy support.
Viewing 3 reply threads
The support post ‘XSS/Cross SIte Scripting – Firewall Blocking Site’ is closed to new replies.
Have a question about this support post? Create a new support post in our support forums and include a link to this existing support post so we can help you.
Support forum for Event Espresso 3 and Event Espresso 4.