How to Fix ModSecurity Blocking Admin Login in cPanel
Posted about 4 months ago 4.9kCommon Symptoms
Typical issue: 403 error or blank page when logging into WordPress/Joomla admin.
Check ModSecurity Hits
WHM → Security Center → ModSecurity Tools → Hits List → Filter by your IP/domain.
Identify Triggered Rule
Note the rule ID (e.g., 941100 for XSS attempts).
Quick Fixes
Disable Problem Rule
ModSecurity Tools → Rules → Search rule ID → Disable for specific domain.
Whitelist Your IP
Add trusted development IP to avoid blocks during login.
Common Blocking Rules Table
| Rule ID | Trigger | Solution |
|---|---|---|
| 941100 | XSS in POST data | Disable or whitelist |
| 981173 | SQL injection pattern | Disable for admin URL |
| 950007 | Session fixation | Temporarily disable |