Hallo zusammen,
wir haben seit heute das Problem, dass wir im Backend keine Änderungen übernehmen können. Wir bekommen immer den Fehlerhinweis angezeigt:
400 Bad Request Bad Request Your browser sent a request that this server could not understand.
Das Frontend klappt und Bestellungen gehen auch ein.
Weiß jemand, woran das liegen kann?
Unser Fehlerprotokoll wirft das aus:
Protokolldatei:
[Mon Aug 27 12:54:13.942747 2018] [:error] [pid 25816] [client 94.221.150.209] ModSecurity: JSON support was not enabled [hostname "kfc-fanshop.de"] [uri "/backend/Order/save"] [unique_id "W4PYVQUBTDkAAGTYOXYAAAAN"]
[Mon Aug 27 12:54:13.975836 2018] [:error] [pid 25816] [client 94.221.150.209] ModSecurity: Access denied with code 400 (phase 2). Match of "eq 0" against "REQBODY_ERROR" required. [file "/etc/modsecurity/modsecurity.conf"] [line "61"] [id "200002"] [msg "Failed to parse request body."] [data ""] [severity "CRITICAL"] [hostname "kfc-fanshop.de"] [uri "/backend/Order/save"] [unique_id "W4PYVQUBTDkAAGTYOXYAAAAN"]
[Mon Aug 27 12:54:14.146303 2018] [:error] [pid 25822] [client 94.221.150.209] ModSecurity: Access denied with code 403 (phase 2). Pattern match " found within ARGS:text: fehler beim \\xc3\\x84ndern des status. undefined"] [severity "CRITICAL"] [ver "OWASP_CRS/3.1.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-xss"] [tag "OWASP_CRS/WEB_ATTACK/XSS"] [tag "WASCTC/WASC-8"] [tag "WASCTC/WASC-22"] [tag "OWASP_TOP_10/A2"] [tag "OWASP_AppSensor/IE1"] [tag "PCI/6.5.1"] [tag "paranoia-level/2"] [hostname "kfc-fanshop.de"] [uri "/backend/Log/createLog"] [unique_id "W4PYVgUBTDkAAGTeq-UAAAAU"]
[Mon Aug 27 12:56:10.475641 2018] [:error] [pid 26058] [client 94.221.150.209] ModSecurity: JSON support was not enabled [hostname "kfc-fanshop.de"] [uri "/backend/Article/save"] [unique_id "W4PYygUBTDkAAGXKTQcAAAAM"]
[Mon Aug 27 12:56:10.493885 2018] [:error] [pid 26058] [client 94.221.150.209] ModSecurity: Access denied with code 400 (phase 2). Match of "eq 0" against "REQBODY_ERROR" required. [file "/etc/modsecurity/modsecurity.conf"] [line "61"] [id "200002"] [msg "Failed to parse request body."] [data ""] [severity "CRITICAL"] [hostname "kfc-fanshop.de"] [uri "/backend/Article/save"] [unique_id "W4PYygUBTDkAAGXKTQcAAAAM"]
[Mon Aug 27 13:02:22.484971 2018] [:error] [pid 26362] [client 94.221.150.209] ModSecurity: JSON support was not enabled [hostname "kfc-fanshop.de"] [uri "/backend/Article/save"] [unique_id "W4PaPgUBTDkAAGb6Z80AAAAY"]
[Mon Aug 27 13:02:22.503008 2018] [:error] [pid 26362] [client 94.221.150.209] ModSecurity: Access denied with code 400 (phase 2). Match of "eq 0" against "REQBODY_ERROR" required. [file "/etc/modsecurity/modsecurity.conf"] [line "61"] [id "200002"] [msg "Failed to parse request body."] [data ""] [severity "CRITICAL"] [hostname "kfc-fanshop.de"] [uri "/backend/Article/save"] [unique_id "W4PaPgUBTDkAAGb6Z80AAAAY"]
schließen
