WooCommerce 8.5.0 triggering mod_security rule and causing 403 error

Recently we have came accross issue with WooCommerce versions 8.5.0 and higher which has enabled feature “Order Attribution (Order Attribution Enable this feature to track and credit channels and campaigns that contribute to orders on your site)”.

Issue is that this feature triggers ModSecurity Comodo rule ID 218500 (SQLmap attack detected). Triggering that rule prevents access to site for all users and could potentially ban user’s IP via firewall.

You might want to disable this option or skip the rule (can be done usually in your control panel or you need to contact hosting support).