exxos
2024-11-21 00:15:21
(1 week ago)
web exploit attacks
Web App Attack
TPI-Abuse
2024-11-19 17:03:19
(1 week ago)
(mod_security) mod_security (id:225170) triggered by 2a02:4780:10:8b24::1 (srv588858.hstgr.cloud): 1 ... show more (mod_security) mod_security (id:225170) triggered by 2a02:4780:10:8b24::1 (srv588858.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 19 12:03:12.533083 2024] [security2:error] [pid 31552:tid 31552] [client 2a02:4780:10:8b24::1:49860] [client 2a02:4780:10:8b24::1] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||cubbylure.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "cubbylure.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZzzE0HBs6PZyuqZR-t-05wAAAAA"], referer: http://mini-mite.com///wp-json/wp/v2/users/ show less
Brute-Force
Bad Web Bot
Web App Attack
Ba-Yu
2024-11-19 09:23:37
(1 week ago)
WP-xmlrpc exploit
Web Spam
Blog Spam
Hacking
Exploited Host
Web App Attack
TPI-Abuse
2024-11-18 14:03:54
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 2a02:4780:10:8b24::1 (srv588858.hstgr.cloud): 1 ... show more (mod_security) mod_security (id:225170) triggered by 2a02:4780:10:8b24::1 (srv588858.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 18 09:03:47.453058 2024] [security2:error] [pid 22438:tid 22438] [client 2a02:4780:10:8b24::1:38656] [client 2a02:4780:10:8b24::1] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||415test.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "415test.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZztJQ-Kz9LHBZl3iXhhg6gAAABc"] show less
Brute-Force
Bad Web Bot
Web App Attack
TPI-Abuse
2024-11-18 13:30:29
(2 weeks ago)
(mod_security) mod_security (id:225170) triggered by 2a02:4780:10:8b24::1 (srv588858.hstgr.cloud): 1 ... show more (mod_security) mod_security (id:225170) triggered by 2a02:4780:10:8b24::1 (srv588858.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 18 08:30:25.708240 2024] [security2:error] [pid 3498:tid 3498] [client 2a02:4780:10:8b24::1:44684] [client 2a02:4780:10:8b24::1] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||integrabroadcast.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "integrabroadcast.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZztBcfjYXpqd2H0eTTt8owAAAAg"] show less
Brute-Force
Bad Web Bot
Web App Attack
RV
2024-11-14 04:14:00
(2 weeks ago)
brute WP
Brute-Force
Web App Attack
TPI-Abuse
2024-11-11 15:00:07
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 2a02:4780:10:8b24::1 (srv588858.hstgr.cloud): 1 ... show more (mod_security) mod_security (id:225170) triggered by 2a02:4780:10:8b24::1 (srv588858.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Mon Nov 11 10:00:00.247712 2024] [security2:error] [pid 690:tid 690] [client 2a02:4780:10:8b24::1:56514] [client 2a02:4780:10:8b24::1] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||angelabcomics.flyingdodopublications.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "angelabcomics.flyingdodopublications.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZzIb8J1ICTcAS1OkVlaSDAAAAAs"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-11-07 22:40:21
(3 weeks ago)
WordPress attacks
Hacking
Web App Attack
Anonymous
2024-11-06 21:01:30
(3 weeks ago)
WordPress attacks
Hacking
Web App Attack
TPI-Abuse
2024-11-06 13:53:49
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 2a02:4780:10:8b24::1 (srv588858.hstgr.cloud): 1 ... show more (mod_security) mod_security (id:225170) triggered by 2a02:4780:10:8b24::1 (srv588858.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Wed Nov 06 08:53:44.125463 2024] [security2:error] [pid 29840:tid 29840] [client 2a02:4780:10:8b24::1:37210] [client 2a02:4780:10:8b24::1] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||stoughtonpipeandwelding.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "stoughtonpipeandwelding.net"] [uri "/wp-json/wp/v2/users/"] [unique_id "Zyt06C6E7etdW7Zs2zhFkAAAABA"] show less
Brute-Force
Bad Web Bot
Web App Attack
mawan
2024-11-06 11:00:36
(3 weeks ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
TPI-Abuse
2024-11-05 17:19:20
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 2a02:4780:10:8b24::1 (srv588858.hstgr.cloud): 1 ... show more (mod_security) mod_security (id:225170) triggered by 2a02:4780:10:8b24::1 (srv588858.hstgr.cloud): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Tue Nov 05 12:19:13.936850 2024] [security2:error] [pid 12727:tid 12747] [client 2a02:4780:10:8b24::1:41086] [client 2a02:4780:10:8b24::1] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||kettlehill.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kettlehill.net"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZypTkT32QciMMVNmRElG2QAAARI"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-11-05 16:03:40
(3 weeks ago)
WordPress attacks
Hacking
Web App Attack
mawan
2024-11-04 12:16:11
(4 weeks ago)
Suspected of having performed illicit activity on LAX server.
Web App Attack
jasperedv.de
2024-11-04 11:10:21
(4 weeks ago)
Apache Login - Brutforcing
Brute-Force
Web App Attack