Fixing FP

coreruleset · Mar 1, 2024 · e55cfcc · e55cfcc
1 parent a9376fd
commit e55cfcc
Showing 1 changed file with 3 additions and 7 deletions.
diff --git a/plugins/wordpress-rule-exclusions-before.conf b/plugins/wordpress-rule-exclusions-before.conf
@@ -982,20 +982,16 @@ SecRule REQUEST_FILENAME "@endsWith /wp-admin/admin-ajax.php" \
             ctl:ruleRemoveTargetByTag=OWASP_CRS;ARGS:newcontent"
 
 # Opening the plugins page
-# The plugin page contains the text "Plugins extend and expand the functionality of WordPress.
-# 953101 is matching "the function"
 SecRule REQUEST_FILENAME "@rx /wp-admin/(?:plugins|plugin-install)\.php$" \
     "id:9507971,\
     phase:4,\
     pass,\
     t:none,\
     nolog,\
     ver:'wordpress-rule-exclusions-plugin/1.0.1',\
-    chain"
-    SecRule RESPONSE_BODY "@contains plugins extend and expand the functionality of wordpress." \
-        "t:none,\
-        t:lowercase,\
-        ctl:ruleRemoveById=953101"
+    ctl:ruleRemoveTargetById=951240;RESPONSE_BODY,\
+    ctl:ruleRemoveTargetById=953100;RESPONSE_BODY,\
+    ctl:ruleRemoveTargetById=953101;RESPONSE_BODY"
 
 SecMarker "END-WORDPRESS-ADMIN"