403 Forbidden error code is shown when your server permissions don’t allow access to a specific page.

Step 1: Change WAF settings

The full spelling of Waf is: Web Application Firewall, as the name suggests Waf is a protection product designed specifically for web application attacks. If you encounter a false alarm, you need to change the WAF settings through the server (I use “Lollipop”) Method: Click WAF setting “invalid” to return to the website update confirmation.

Step 2: Add commands in the .htaccess file

At the end of the .htaccess file:
SiteGuard_User_ExcludeSig xss-try-11 xss-try-11
is the webpage source code, the confirmation method in the server lolipop: