403/whitelist issue

Home Forums BulletProof Security Free 403/whitelist issue

Viewing 4 posts - 1 through 4 (of 4 total)
  • Author
    Posts
  • February 12, 2026 at 5:25 am #45759
    Jaiji
    Participant

    Hi. I run a WooCommerce site selling jewellery which uses Klaviyo for marketing emails. A mailout has just gone out with 2 links – one to a Valentine’s day collection in the Woo store, and one to a Valentines blog post. The links have extensive Klaviyo tracking code, which until today has always worked fine.

    When clicking the email links, I am getting to the page without a problem in Firefox (once I disable my scriptblocker). However the store owner is getting a BPS 403 initially on both links, using Chrome. On mobile I initially get an unstyled page (no CSS) but if I remove the tracking code and refresh the link it loads fine. Then if I re-add the tracking code to the link and try again it’s also fine. If I deactivate the root and admin BPS to use a standard htaccess file everything works OK.

    I presume I need to whitelist Klaviyo?

    The error logs show these two entries:

    [403 GET Request: February 12, 2026 1:05 pm]
BPS: 7.1
WP: 6.9.1
Event Code: BFHS - Blocked/Forbidden Hacker or Spammer
Solution: N/A - Hacker/Spammer Blocked/Forbidden
REMOTE_ADDR: 151.224.227.250
Host Name: 97e0e3fa.skybroadband.com
SERVER_PROTOCOL: HTTP/1.1
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: GET
HTTP_REFERER:
REQUEST_URI: /product/gold-celtic-eternal-heart-pendant/?utm_source=Klaviyo&utm_medium=campaign&utm_campaign=Valentine%27s%20last%20minute&utm_id=01KH8PRVPPXA035M1P8T5BV650&_kx=b_6zxBSg-rhvxddMQHqQhQ.Y9S4YK
QUERY_STRING: utm_source=Klaviyo&utm_medium=campaign&utm_campaign=Valentine%27s%20last%20minute&utm_id=01KH8PRVPPXA035M1P8T5BV650&_kx=b_6zxBSg-rhvxddMQHqQhQ.Y9S4YK
HTTP_USER_AGENT: Mozilla/5.0 (iPhone; CPU iPhone OS 18_6_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.6 Mobile/15E148 Safari/604.1

[403 GET Request: February 12, 2026 1:05 pm]
BPS: 7.1
WP: 6.9.1
Event Code: BFHS - Blocked/Forbidden Hacker or Spammer
Solution: N/A - Hacker/Spammer Blocked/Forbidden
REMOTE_ADDR: 151.224.227.250
Host Name: 97e0e3fa.skybroadband.com
SERVER_PROTOCOL: HTTP/1.1
HTTP_CLIENT_IP:
HTTP_FORWARDED:
HTTP_X_FORWARDED_FOR:
HTTP_X_CLUSTER_CLIENT_IP:
REQUEST_METHOD: GET
HTTP_REFERER: https://www.royalmilesilver.co.uk/product/gold-celtic-eternal-heart-pendant/?utm_source=Klaviyo&utm_medium=campaign&utm_campaign=Valentine%27s%20last%20minute&utm_id=01KH8PRVPPXA035M1P8T5BV650&_kx=b_6zxBSg-rhvxddMQHqQhQ.Y9S4YK
REQUEST_URI: /favicon.ico
QUERY_STRING:
HTTP_USER_AGENT: Mozilla/5.0 (iPhone; CPU iPhone OS 18_6_2 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/18.6 Mobile/15E148 Safari/604.1
    February 12, 2026 at 5:34 am #45760
    Jaiji
    Participant

    I’m finding it strange that the site owner gets a 403 (it’s them who’s blocked in the logs) but I don’t.

    February 12, 2026 at 5:58 am #45762
    AITpro Admin
    Keymaster

    What is being blocked is the single quote code character/apostrophe in the Query String: Valentine%27s Use the solution in this forum topic to fix the problem > https://forum.ait-pro.com/forums/topic/apostrophe-single-quote-code-character/#post-6939

    February 12, 2026 at 6:54 am #45763
    Jaiji
    Participant

    Thanks so much, that seems to have sorted it. I very much appreciate your excellent support.

  • Author
    Posts
Viewing 4 posts - 1 through 4 (of 4 total)
  • You must be logged in to reply to this topic.