RSFirewall! doesn't allow me to add HTML, CSS or JavaScript to a post

Sometimes RSFirewall! can be a little too restrictive when it comes to PHP, JavaScript and SQL protections. For example, when users attempt to modify content by adding JavaScript, this can be consider as a Javascript injection. To avoid this, you can create an exception in the following manner:

  • Head to RSFirewall! > Exceptions
  • Click on Add New Exception
  • Select URL in the Exception Type dropdown
  • Add the page URL in the Match textbox
  • Set Skip PHP Protections, Skip SQL Protections and Skip Upload Protections to No.
  • Set Skip JS Protections to Yes.
  • Click on Publish.

By setting up the exception described above, RSFirewall! will disregard any potential Javascript injection associated with the specified URL.


Important note: when you save a post that contains <script> or <iframe> tags (without having created an exception similar to the one presented in this article) , RSFirewall! will modify these tags into <s-cript> and <i-frame> instead, thus disabling their functionality by rendering them unrecognisable by web browsers. Please note that, after creating the exception, RSFirewall! will not change the tags to their original state and you will need to do so manually.

Was this article helpful?

Yes No
Sorry about that