Hi, i tried to create ticket and insert image. After image uploaded and click the create ticket button, i'm getting error.
Also i noticed getting error "Unable to save draft.Refresh the current page to restore and continue your draft"
x3inspire
Do you have any plugins installed? Seems like your server is misconfigured as it’s rejecting the image download.
Cheers.
KevinTheJedi Hi, this is only list of plugin installed.
When i used atttach, it works fine. Only problem when using image button. Also when do reply in ticket after opened, i can insert image using image button.
The problem is only i cannot insert image for the new ticket.
You will need to look at your logs (general server logs, webserver error logs, PHP error logs, MySQL/MariaDB error logs, osTicket System Logs, Browser Console logs, etc.) for any related errors.
KevinTheJedi I don't find any error from the osTicket log. But i noticed error from browser console after click image button: Do you think those error is cause of this problem?
KevinTheJedi Could you help what should i do?
In a previous reply I listed the various logs you need to check. You need to check LiteSpeed error logs most importantly. If you use a hosting provider you may need to reach out to them to see if they have any security rules blocking the requests.
KevinTheJedi Hi, here is the Litespeed error log:
2023-07-29 13:04:28.833381 [INFO] [4192700] [T0] [APVH_registar_Suea-php81:]: locked pid file [/ usr/local/lsws/extapp-sock/APVH_registar_Suea-php81.sock.pid]. 2023-07-29 13:04:28.833396 [INFO] [4192700] [T0] [APVH_registar_Suea-php81:] remove unix socket for detached process: /usr/local/lsws/extapp-sock/APVH_registar_Suea-php81.sock 2023-07-29 13:04:28.834456 [INFO] [4192700] [T0] [APVH_registar_Suea-php81:] add child process p id: 233442, procinfo: 0x4011330 2023-07-29 13:04:28.834567 [INFO] [4192700] [T0] [APVH_registar_Suea-php81:]: unlocked pid file [/usr/local/lsws/extapp-sock/APVH_registar_Suea-php81.sock.pid]. 2023-07-29 13:04:33.309057 [NOTICE] [4192700] [T6] [127.0.0.1:60878-4#APVH_helpdeskdemo.domain.com:443] [MODSEC] mod_security rule [id "77242140"] at [/etc/apache2/conf.d/modsec_vendor _configs/imunify360-full-litespeed/010_i360_7_otherapps.conf:105] triggered! [Sat Jul 29 13:04:33.306365 2023] [error] [client 180.75.xxx.xxx] ModSecurity: Access denied wit h code 403, [Rule: 'ARGS' '@rx \x22'] [id "77242140"] [msg "IM360 WAF: XSS vulnerability in the osTicket before 1.9.2 (CVE-2014-4744)MVN:<p>342342342</p> <figure><img src="/file.php?key=dmuwtha-1fvchzuaycs0z7vzvyrl2kbq&expires=1690675200&signature=08 5bab330e2794d8150ee37fcd6e84deb0bb1e58&id=41" data-image="dmuWTha-1fvCHZuAYCS0Z7VZVYRl2KbQ"></fi gure>MV:<p>342342342</p> <figure><img src="/file.php?key=dmuwtha-1fvchzuaycs0z7vzvyrl2kbq&expires=1690675200&signature=08 5bab330e2794d8150ee37fcd6e84deb0bb1e58&id=41" data-image="dmuWTha-1fvCHZuAYCS0Z7VZVYRl2KbQ"></figur..."] [severity "CRITICAL"] [tag "other_apps"] [hostname "helpdeskdemo.domain.com"] [ uri "/open.php"], referer: https://helpdeskdemo.domain.com/open.php 2023-07-29 13:04:33.309122 [NOTICE] [4192700] [T6] [127.0.0.1:60878-4#APVH_helpdeskdemo.domain.com:443] Content len: 893, Request line: 'POST /open.php HTTP/1.1' 2023-07-29 13:04:33.309125 [INFO] [4192700] [T6] [127.0.0.1:60878-4#APVH_helpdeskdemo.domain.com:443] Cookie len: 36, OSTSESSID=qkqss4dg8n66h9d8noqosf23p8 2023-07-29 13:04:33.309233 [INFO] [4192700] [T0] [127.0.0.1:60878-4#APVH_helpdeskdemo.domain.com:443] File not found [/home/registar/public_html/xxxxxx/helpdesk_demo/403.shtml]
Aha, this part ModSecurity: Access denied with code 403 indicates ModSecurity is blocking the request. You need to reach out to your host or your server admin and have them either add an exception for this site or maybe even disable it altogether.
ModSecurity: Access denied with code 403
