Description

This rules detects when a post is made using broken forum, CMS or other user generated URL formats. For example this format:

[url=http://www.example.com]some link[/url]

Is commonly used by many forum and CMS tools. Some spam tools will attempt to post spam urls to a site, but will post broken urls, for example not closing the url, or injecting multiple url= url= variables in a row.

Troubleshooting

False Positives

None.

Tuning Guidance

See the Mod_security page for guidance on tuning this rule.

Additional Information

Similar Rules

None.

Knowledge Base Articles

None.

Outside References

None.

Notes

None.