๐ง๐ช
cmbplf
2024-05-21 03:21:20
(2 years ago)
972 POST requests to /wp-login.php
Brute-Force
Bad Web Bot
๐ฉ๐ช
ger-stg-sifi1
2024-05-21 02:08:15
(2 years ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
๐ธ๐ช
maxxsense
2024-05-21 01:59:04
(2 years ago)
(wordpress) Failed wordpress login from 2a01:2a8:a0dd:1::1008 (CH/Switzerland/-)
Brute-Force
๐บ๐ธ
TPI-Abuse
2024-05-20 18:51:42
(2 years ago)
(mod_security) mod_security (id:225170) triggered by 2a01:2a8:a0dd:1::1008 (Unknown): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 2a01:2a8:a0dd:1::1008 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon May 20 14:51:36.019694 2024] [security2:error] [pid 124669:tid 47724299405056] [client 2a01:2a8:a0dd:1::1008:58748] [client 2a01:2a8:a0dd:1::1008] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||davidchapamusic.com.104ventures.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "davidchapamusic.com.104ventures.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZkubuEIWXdUGyWGlvF6oWQAAAEI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
on-com
2024-05-20 18:25:24
(2 years ago)
URL scan
Brute-Force
Web App Attack
๐ณ๐ฑ
vestibtech
2024-05-20 18:11:45
(2 years ago)
2a01:2a8:a0dd:1::1008 - - [20/May/2024:12:11:44 -0600] "GET /wp-login.php HTTP/1.1" 301 476 "-" "Moz ...
show more
2a01:2a8:a0dd:1::1008 - - [20/May/2024:12:11:44 -0600] "GET /wp-login.php HTTP/1.1" 301 476 "-" "Mozilla/5.0 (X11; Fedora; Linux x86_64; rv:94.0) Gecko/20100101 Firefox/95.0"
...
show less
Web App Attack
Anonymous
2024-05-20 06:48:10
(2 years ago)
Ports: 80,443; Direction: 0; Trigger: LF_CUSTOMTRIGGER
Brute-Force
SSH
๐ฉ๐ช
iNetWorker
2024-05-20 06:04:19
(2 years ago)
trolling for resource vulnerabilities
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-05-19 19:54:26
(2 years ago)
(mod_security) mod_security (id:225170) triggered by 2a01:2a8:a0dd:1::1008 (Unknown): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 2a01:2a8:a0dd:1::1008 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 19 15:54:23.283355 2024] [security2:error] [pid 1580629] [client 2a01:2a8:a0dd:1::1008:29014] [client 2a01:2a8:a0dd:1::1008] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||takemehomedogrescue.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "takemehomedogrescue.org"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZkpY77Os7k3TnYnM0Pr-6AAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-05-19 19:33:06
(2 years ago)
(mod_security) mod_security (id:225170) triggered by 2a01:2a8:a0dd:1::1008 (Unknown): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 2a01:2a8:a0dd:1::1008 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 19 15:33:00.010423 2024] [security2:error] [pid 20484] [client 2a01:2a8:a0dd:1::1008:17572] [client 2a01:2a8:a0dd:1::1008] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||bsnbanif.es|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bsnbanif.es"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZkpT7I8Jo3GqFcPmgykaTwAAAAI"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2024-05-19 17:51:45
(2 years ago)
(mod_security) mod_security (id:225170) triggered by 2a01:2a8:a0dd:1::1008 (Unknown): 1 in the last ...
show more
(mod_security) mod_security (id:225170) triggered by 2a01:2a8:a0dd:1::1008 (Unknown): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun May 19 13:51:40.549647 2024] [security2:error] [pid 2272849] [client 2a01:2a8:a0dd:1::1008:32578] [client 2a01:2a8:a0dd:1::1008] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.jimrichardart.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.jimrichardart.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "Zko8LE7gDWIbZ59UtNMctQAAAA0"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ger-stg-sifi1
2024-05-19 09:12:43
(2 years ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
๐ฆ๐บ
weblite
2024-05-19 08:53:25
(2 years ago)
WP_XMLRPC_ABUSE
Brute-Force
Web App Attack
๐ฉ๐ช
akasolutions.de
2024-05-19 08:36:57
(2 years ago)
(wordpress) Failed wordpress login from 2a01:2a8:a0dd:1::1008 (Unknown)
Brute-Force
๐ฉ๐ช
karger
2024-05-19 07:45:00
(2 years ago)
Wordpress attack - soft filter
Brute-Force
Web App Attack