Since Apache version 2.4.60 (from July 3rd) it is no longer allowed to encode question marks in the URL with %3F. Question marks encoded with %3f produce a 403 error. This affects the Apache standard settings.
Various phpBB pages produce an URL in which the question mark is encoded with %3f in the redirect variable. We now get a 403 error there. This affects various moderator functions at the bottom of the page and the login from a subpage.
If you have access to the Apache settings, this error can be switched off using "UnsafeAllow3F". But this is not possible with packages from a hoster and they are usually not willing to change the Apache standard settings.
Is this already known and is something being done about it?
Various phpBB pages produce an URL in which the question mark is encoded with %3f in the redirect variable. We now get a 403 error there. This affects various moderator functions at the bottom of the page and the login from a subpage.
If you have access to the Apache settings, this error can be switched off using "UnsafeAllow3F". But this is not possible with packages from a hoster and they are usually not willing to change the Apache standard settings.
Is this already known and is something being done about it?
Statistics: Posted by Eisrose — Wed Jul 17, 2024 9:46 pm