๐บ๐ธ
TPI-Abuse
2026-06-03 18:54:08
(4 weeks ago)
(mod_security) mod_security (id:225170) triggered by 18.194.237.215 (ec2-18-194-237-215.eu-central-1 ...
show more
(mod_security) mod_security (id:225170) triggered by 18.194.237.215 (ec2-18-194-237-215.eu-central-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 14:54:03.084984 2026] [security2:error] [pid 28868:tid 28868] [client 18.194.237.215:37774] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||rohanbyles.com.au|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "rohanbyles.com.au"] [uri "/wp-json/wp/v2/users/me"] [unique_id "aiB4S1h3QHBZ1exaSKvwjgAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐จ๐ฟ
ptlab
2026-06-03 18:45:09
(4 weeks ago)
Detected wp_login attack from WP-host.
Hacking
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-03 17:20:23
(4 weeks ago)
(mod_security) mod_security (id:225170) triggered by 18.194.237.215 (ec2-18-194-237-215.eu-central-1 ...
show more
(mod_security) mod_security (id:225170) triggered by 18.194.237.215 (ec2-18-194-237-215.eu-central-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 13:20:19.058967 2026] [security2:error] [pid 6813:tid 6813] [client 18.194.237.215:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||ipv6.local639.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "ipv6.local639.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "aiBiUy_BAkpnuqwVWcHrJAAAAAA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
Martin Lundstrom
2026-06-03 16:45:19
(4 weeks ago)
https://www.eagleeye-intelligence.com โ WordPress attack. Automatically detected and blocked.
Web App Attack
๐บ๐ธ
lostswordfish.com
2026-06-03 12:50:07
(4 weeks ago)
Wordfence waf block on floridaactioncommittee
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-03 11:17:14
(4 weeks ago)
(mod_security) mod_security (id:225170) triggered by 18.194.237.215 (ec2-18-194-237-215.eu-central-1 ...
show more
(mod_security) mod_security (id:225170) triggered by 18.194.237.215 (ec2-18-194-237-215.eu-central-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 07:17:08.645342 2026] [security2:error] [pid 403:tid 403] [client 18.194.237.215:60660] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||gabbyspetnanny.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gabbyspetnanny.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "aiANNJbXx6pDqZR3LW2w7wAAAAU"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-06-03 07:49:47
(4 weeks ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-06-03 07:03:18
(4 weeks ago)
(mod_security) mod_security (id:225170) triggered by 18.194.237.215 (ec2-18-194-237-215.eu-central-1 ...
show more
(mod_security) mod_security (id:225170) triggered by 18.194.237.215 (ec2-18-194-237-215.eu-central-1.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Jun 03 03:03:14.378977 2026] [security2:error] [pid 25469:tid 25469] [client 18.194.237.215:38280] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.jesussotoca.bigchus.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.jesussotoca.bigchus.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ah_RsqKpZ-3AW2FQVYb8dAAAACk"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ฎ
YF
2026-06-03 01:02:09
(1 month ago)
WordPress author enumeration
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-06-02 17:57:46
(1 month ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
Exploited Host
Web App Attack
๐ซ๐ท
masterguru
2026-06-02 04:11:23
(1 month ago)
(modsec_5040) ModSec 5040: API Basic Auth blocked from 18.194.237.215 (DE/Germany/ec2-18-194-237-215 ...
show more
(modsec_5040) ModSec 5040: API Basic Auth blocked from 18.194.237.215 (DE/Germany/ec2-18-194-237-215.eu-central-1.compute.amazonaws.com): 1 in the last 3600 secs (0-196)
show less
Hacking
๐บ๐ธ
octageeks.com
2026-06-02 04:07:06
(1 month ago)
Wordpress malicious attack:[octawp]
Web App Attack
Anonymous
2026-06-02 02:42:39
(1 month ago)
WordPress Brute Force
Brute-Force
๐บ๐ธ
nationaleventpros.com
2026-06-02 00:29:35
(1 month ago)
WordPress login attempt
Brute-Force
๐ฉ๐ช
LRob
2026-06-01 21:45:11
(1 month ago)
WordPress login brute-force detected by Fail2Ban in plesk-wordpress jail
Brute-Force
Web App Attack