139h (upgraded)
Testing on a non-public project.
Stumbled into a strange search result to a strange search request:
More than 7 forward slashes results in a 403 error.
Search can be '////////' or any text either side eg 'zc////////zc' all result in 403.
Went through some of the recent showcase sites, the majority resolve to the normal search results (as do these with 7 or less), but others do respond with a 403.
A couple of examples: cobrabraid[dot]com, jazmin-books[dot]co[dot]uk
I assume this a server configuration setting triggering the 403, but is it a potential problem? Of course not for searches--no-one's going to actually use those search terms--but security?


Reply With Quote
