๐ฉ๐ช
burlacu.org
2026-07-16 09:42:03
(1 day ago)
Nginx multi-log analysis detected: wordpress_scan. Evidence: XMLRPC abuse with 21 requests. Blocked ...
show more
Nginx multi-log analysis detected: wordpress_scan. Evidence: XMLRPC abuse with 21 requests. Blocked automatically.
show less
Web App Attack
Bad Web Bot
๐ซ๐ท
dynamix
2026-07-16 09:08:43
(1 day ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐ณ๐ฑ
debestelapp
2026-07-16 06:25:06
(1 day ago)
Web App Attack
๐ซ๐ท
SpaceHost-Server
2026-05-14 22:29:43
(2 months ago)
Brute-Force
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-14 07:52:55
(2 months ago)
(mod_security) mod_security (id:240335) triggered by 223.235.102.43 (abts-north-dynamic-43.102.235.2 ...
show more
(mod_security) mod_security (id:240335) triggered by 223.235.102.43 (abts-north-dynamic-43.102.235.223.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 14 03:52:50.254109 2026] [security2:error] [pid 4300:tid 4300] [client 223.235.102.43:11771] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 223.235.102.43 (+1 hits since last alert)|campnecon.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "campnecon.com"] [uri "/xmlrpc.php"] [unique_id "agV_Uk6Ejs9gMOkp36jwwgAAABs"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-14 06:52:53
(2 months ago)
(mod_security) mod_security (id:240335) triggered by 223.235.102.43 (abts-north-dynamic-43.102.235.2 ...
show more
(mod_security) mod_security (id:240335) triggered by 223.235.102.43 (abts-north-dynamic-43.102.235.223.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu May 14 02:52:45.641799 2026] [security2:error] [pid 8020:tid 8020] [client 223.235.102.43:19013] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5956"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 223.235.102.43 (+1 hits since last alert)|ssion.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "ssion.com"] [uri "/xmlrpc.php"] [unique_id "agVxPW6rN-DiK_RoEeB6DAAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-05-14 03:37:06
(2 months ago)
(mod_security) mod_security (id:240335) triggered by 223.235.102.43 (abts-north-dynamic-43.102.235.2 ...
show more
(mod_security) mod_security (id:240335) triggered by 223.235.102.43 (abts-north-dynamic-43.102.235.223.airtelbroadband.in): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed May 13 23:37:00.358409 2026] [security2:error] [pid 30596:tid 30596] [client 223.235.102.43:23241] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at IP. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/30_Apps_OtherApps.conf"] [line "5965"] [id "240335"] [rev "5"] [msg "COMODO WAF: XML-RPC Attack Identified (CVE-2013-0235)|Source 223.235.102.43 (+1 hits since last alert)|sutherlandyogastudio.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "OtherApps"] [hostname "sutherlandyogastudio.com"] [uri "/xmlrpc.php"] [unique_id "agVDXKh77y2sYp-6kgWA0AAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ซ๐ท
dynamix
2026-05-13 07:58:26
(2 months ago)
WordPress XMLRPC Brute Force Attack
Brute-Force
Web App Attack
๐ฉ๐ช
Carsten
2026-02-18 21:29:53
(4 months ago)
GET [index.php?inhalt=preise%22%2CGTID_SUBSET%28%2F%2A%2150000CONCAT%2A%2F%28%2527~%2527%2C%28%2F%2A ...
show more
GET [index.php?inhalt=preise%22%2CGTID_SUBSET%28%2F%2A%2150000CONCAT%2A%2F%28%2527~%2527%2C%28%2F%2A%2150000SELECT%2A%2F%28ELT%283311%3D3311%2C1%29%29%29%2C%2527~%2527%29%2C3311%29+AND+%22QthTYPWp%22+
show less
SQL Injection