I am facing a problem when trying to post data to my PHP from html form. The issue is as follows:
On
A solution about disabling should help but it decreases security — stops doing that.
Better to spend more time understanding the main reason and for example configure mod_security for Wordpress:
Based on this article you can disable some rules directly for wp-admin directory:
<LocationMatch "/wp-admin/">
SecRuleRemoveById 300013
SecRuleRemoveById 300014
SecRuleRemoveById 300015
SecRuleRemoveById 300016
SecRuleRemoveById 300017
</LocationMatch>
Based on this article you can disable some rules directly for sub-directories:
<LocationMatch "/wp-admin/admin-ajax.php">
SecRuleRemoveById 300013
SecRuleRemoveById 300015
SecRuleRemoveById 300016
SecRuleRemoveById 300017
SecRuleRemoveById 949110
SecRuleRemoveById 980130
</LocationMatch>
<LocationMatch "/wp-admin/page.php">
SecRuleRemoveById 300013
SecRuleRemoveById 300015
SecRuleRemoveById 300016
SecRuleRemoveById 300017
SecRuleRemoveById 949110
SecRuleRemoveById 980130
</LocationMatch>
<LocationMatch "/wp-admin/post.php">
SecRuleRemoveById 300013
SecRuleRemoveById 300015
SecRuleRemoveById 300016
SecRuleRemoveById 300017
SecRuleRemoveById 949110
SecRuleRemoveById 980130
</LocationMatch>
If you want to be sure that mod_security is used you can wrap the settings above in this:
<IfModule mod_security.c>
# ...
# <LocationMatch ...>
# ...
</IfModule>
To solve this error, @qtwrk's comment is correct that you must use the following code in your .htaccess.
WordPress running on Litespeed Server will often fail with a 403 error when you try to post any content while creating new pages and posts in WP Admin. This code solves that issue.