spyra.rocks
2024-11-05 16:00:31
(5 hours ago)
WordPress
Web App Attack
polycoda
2024-10-15 11:29:16
(3 weeks ago)
📄 Probes for tons of inexistent files and PHP scripts
Hacking
Web App Attack
BellFix
2024-10-15 08:32:58
(3 weeks ago)
F2B blocked NPM
Port Scan
Brute-Force
Web App Attack
FeG Deutschland
2024-10-15 06:38:01
(3 weeks ago)
Looking for CMS/PHP/SQL vulnerablilities - 13
Exploited Host
Web App Attack
spyra.rocks
2024-10-15 05:18:49
(3 weeks ago)
WordPress Backend Shield
Web App Attack
BlueWire Hosting
2024-10-15 04:10:05
(3 weeks ago)
Probing for Wordpress vulnerabilities
Bad Web Bot
Web App Attack
rh24
2024-10-15 03:38:32
(3 weeks ago)
(wordpress-user-enum) Failed wordpress-user-enum trigger from 103.48.82.152 (sv-82152.bkns.vn): (CF ... show more (wordpress-user-enum) Failed wordpress-user-enum trigger from 103.48.82.152 (sv-82152.bkns.vn): (CF_ENABLE) show less
Brute-Force
eminovic.ba
2024-10-15 03:26:01
(3 weeks ago)
BRUTE FORCE: Excessive 404 hits
...
Hacking
Brute-Force
Web App Attack
Anonymous
2024-10-15 01:59:22
(3 weeks ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
TPI-Abuse
2024-10-14 13:51:57
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 103.48.82.152 (sv-82152.bkns.vn): 1 in the last ... show more (mod_security) mod_security (id:225170) triggered by 103.48.82.152 (sv-82152.bkns.vn): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Oct 14 09:51:54.263514 2024] [security2:error] [pid 23037:tid 23037] [client 103.48.82.152:41974] [client 103.48.82.152] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||assistfeed.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "assistfeed.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Zw0h-l_tSTMcHN3JvF3nigAAAAk"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-10-14 12:23:17
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 103.48.82.152 (sv-82152.bkns.vn): 1 in the last ... show more (mod_security) mod_security (id:225170) triggered by 103.48.82.152 (sv-82152.bkns.vn): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Oct 14 08:23:12.280150 2024] [security2:error] [pid 15804:tid 15804] [client 103.48.82.152:49604] [client 103.48.82.152] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.communiongatherings.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.communiongatherings.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Zw0NMPBz2JicX2kSAJs7bwAAAAc"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-10-14 11:53:51
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 103.48.82.152 (sv-82152.bkns.vn): 1 in the last ... show more (mod_security) mod_security (id:225170) triggered by 103.48.82.152 (sv-82152.bkns.vn): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Oct 14 07:53:45.230322 2024] [security2:error] [pid 5805:tid 5805] [client 103.48.82.152:54848] [client 103.48.82.152] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||andiamocomputers.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "andiamocomputers.com"] [uri "/wp-json/wp/v2/users"] [unique_id "Zw0GSST2ZZLsOB-_v2_POwAAAAE"] show less
Brute-Force
Bad Web Bot
Web App Attack
applemooz
2024-10-13 13:29:45
(3 weeks ago)
WordPress XMLRPC Brute Force Attacks
...
Brute-Force
Web App Attack
cusezar.com
2024-10-13 10:00:03
(3 weeks ago)
103.48.82.152 /xmlrpc.php
Brute-Force
wnbhosting.dk
2024-10-13 08:59:03
(3 weeks ago)
WP xmlrpc [2024-10-13T10:59:03+02:00]
Hacking
Web App Attack