403 Forbidden error code is shown when your server permissions don’t allow access to a specific page.
Step 1: Change WAF settings
The full spelling of Waf is: Web Application Firewall, as the name suggests Waf is a protection product designed specifically for web application attacks. If you encounter a false alarm, you need to change the WAF settings through the server (I use “Lollipop”) Method: Click WAF setting “invalid” to return to the website update confirmation.
Step 2: Add commands in the .htaccess file
At the end of the .htaccess file:
SiteGuard_User_ExcludeSig xss-try-11 xss-try-11
is the webpage source code, the confirmation method in the server lolipop: