‘403 Forbidden’ when publishing a post containing different blocks

After carefully checking the hosting settings again, I found out that Plesk’s firewall was too restrictive. Each API call was going through it and — in most cases — any non-text block was mistakenly detected as WordPress Unauthenticated Content Injection vulnerability, for some reason. I noticed it in the firewall’s log.

Whitelisting Gutenberg in the rules set and changing the firewall mode to “Detection only” fixed the issue.

Firewall settings in Plesk

Not sure if a Plesk’s update caused it. Nobody changed the firewall rules recently and the 403 issue appeared only a few days ago. I’ll report it to Plesk, in case it’s a bug.

Related Posts:

  1. How to use “Add link” pop up for a WordPress widget
  2. How to hide specific Gutenberg blocks settings from users
  3. How To Have Two Gutenberg Editors On One Post?
  4. Adding additional data to WP_Post object
  5. Passing a hardcoded page/post ID into `get_post`
  6. Set Post Title to Read-only and Disable Permalink Slug Editor in Gutenberg
  7. How can I see a list of pages and post where my custom Gutenberg block is used?
  8. Use an attachment in multiple posts
  9. Get post from custom REST endpoint in Gutenberg
  10. Query Post Preview Updates from the WP API?
  11. How do I add a reusable block to a programmatically created post?
  12. Every possible way to get data (posts) from WordPress
  13. Limit Gutenberg blocks available to users to choose from
  14. WordPress REST API not returning all posts
  15. Block Editor: Reset Reusable Blocks to last saved record
  16. How can I get the media inside a post?
  17. List blocks created by a specific block plugin
  18. How to Programmatically add an empty Block to every post on wordpress site?
  19. How to disable WordPress blog folder
  20. transition_post_status hook doesn’t have any POST data when publish with Gutenberg [closed]
  21. Block editors annoying warnings
  22. Change post-slug using wordpress API? Change permalink of a post using php / jquery?
  23. Creating a WordPress Post via REST API – HTML or Markdown?
  24. How to populate a select field with post titles/ids in a block
  25. Get timestamp of latest post in C#
  26. Get post publishing date from within custom HTML block
  27. Indenting within a blockquote
  28. Pull in posts using post meta for REST API
  29. Override WordPress core post-template.php block template
  30. How to remove the ManageBlocksMenuItem in the ToolsMoreMenuGroup in the Gutenberg Editor?
  31. WordPress React re-rendering to many times
  32. How to set a Post’s default visibility to ‘Private’ in Gutenberg?
  33. Embedding Post Editor Into External Site
  34. Add data attribute of post_id for Internal links
  35. Auto inserted strange characters in wp post
  36. exclude particular category in api
  37. Is update_post_meta used when save_post action hook is invoked?
  38. Moving Gutenberg content from one website to another (block media ids wrong?)
  39. Get origin or context of a how a post got created and/or updated
  40. How to add a block to a category page?
  41. how to fetch posts from Api in chunks or parts?
  42. REST API Working for GET but not for POST?
  43. How to create REST Based JSON API(how to modify the code below)?
  44. Problem with wp_insert_post()
  45. Surrogate ID for posts, is there an alternative field in the posts table?
  46. Need All the posts with id, title and date [closed]
  47. Is there a block to print post link standalone in a block theme?
  48. Notify/check if the content of a custom gutenberg block has changed on save_post
  49. How to get a list of all posts and their categories?
  50. Server 500 error when updating post using block editor
  51. editPost without undo entry
  52. Gutenberg block: add a multi-select for posts
  53. Preset category checkbox from URL parameter when creating new post
  54. Is it possible to create dynamic templates for block themes directly from the site editor?
  55. WordPress Rest API Post request from AMP
  56. How do I get my Gutenberg element to prevent last modified from updating?
  57. Can’t save/get Patterns’ `post_content` attribute
  58. Shortcode in loop always display data of first post on the page
  59. How do I retrieve featured posts using the WordPress API (v1)?
  60. Get WordPress post content by post id
  61. Get page ID of page that is set as the posts page
  62. Get Posts Under Custom Taxonomy
  63. How to limit the number of posts that WP_Query gets?
  64. Stop WordPress Wrapping Images In A “P” Tag
  65. When is the ‘post_content_filtered’ column in database cleared by WordPress?
  66. Turn a URL into an Attachment / Post ID
  67. GET the excerpt by ID
  68. Stop WordPress automatically adding tags to post content
  69. Determine if page is the Posts Page
  70. How to get ‘post_content’ without stripping tags?
  71. How to add an admin notice upon post save/update
  72. Print Current Post Index number within Loop
  73. Should we trust the post globals?
  74. Optimize post insert and delete for bulk operations?
  75. Get the Current Page Number
  76. How do you add thumbnail support for custom post types?
  77. How to mark every 3rd post
  78. Change Posts per page count
  79. Keep featured content post in homepage with original order
  80. How to display related posts from same category?
  81. Can posts have parents?
  82. Is there a action hook for the “Empty Trash” button?
  83. How to end the excerpt with a sentence rather than a word?
  84. How do I check if I linked to a post before I delete it?
  85. How to change the case of all post titles to “Title Case”
  86. Appending content with broken in 4.4
  87. How to get posts published between a date and today?
  88. ZIP up all images displayed in a [gallery] and offer as download link
  89. How to detect single.php (but not single-portfolio.php)?
  90. How to check if post meta key exists or not in wordpress database
  91. How to remove a column from the Posts page
  92. removing inline styles from wp-caption div
  93. What is the use of to_ping and pinged column?
  94. Remove Categories / Tags From Admin Menu
  95. How to retrieve text only from wp_content() not from wp_excerpt()?
  96. Stop WP from creating “Sample Page” and “Hello World!” post
  97. Where is the old post permalink slug stored?
  98. How to Create Editable Blocks of Text for the Homepage?
  99. Keyboard shortcut for updating a page or post?
  100. Add custom Attachment Display Setting for images
Hata!: SQLSTATE[HY000] [1045] Access denied for user 'divattrend_liink'@'localhost' (using password: YES)