(mod_security) mod_security triggered on hostname [redacted] 3.109.59.242 (IN/India/-): (CF_ENABLE)
SQL Injection
Anonymous
fail2ban apache-modsecurity [msg "Restricted access based on geolocation rules."] [uri "/templates/e ... show morefail2ban apache-modsecurity [msg "Restricted access based on geolocation rules."] [uri "/templates/enproma/js/jquery.min.js"] show less
(apache-useragents) Failed apache-useragents trigger with match [redacted] from 3.109.59.242 (IN/Ind ... show more(apache-useragents) Failed apache-useragents trigger with match [redacted] from 3.109.59.242 (IN/India/ec2-3-109-59-242.ap-south-1.compute.amazonaws.com) show less
[2024-08-14 07:10:17] Probing for exploits [1 requests]
"GET //<Domain name omitted>/js/cook ... show more[2024-08-14 07:10:17] Probing for exploits [1 requests]
"GET //<Domain name omitted>/js/cookies.js HTTP/1.1" 404 show less
[TueAug1322:10:16.0400972024][security2:error][pid5308:tid5445][client3.109.59.242:0][client3.109.59 ... show more[TueAug1322:10:16.0400972024][security2:error][pid5308:tid5445][client3.109.59.242:0][client3.109.59.242]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch\"\^\(\?:web\(\?:\(\?:st\(\?:ripp\)\?\|download\|copi\)er\|zip\)\|\(\?:prowebwalk\|sitesnagg\)er\|c\(\?:heesebot\|ombine\)\|teleportpro\|blackhole\|chinaclaw\)\"atREQUEST_HEADERS:User-Agent.[file\"/etc/apache2/conf.d/modsec_rules/20_asl_useragents.conf\"][line\"158\"][id\"330019\"][rev\"3\"][msg\"Atomicorp.comWAFRules:SuspiciousWebClientDetected\(Disablethisruleifyouwishtoallowtheseclients\)\"][severity\"ERROR\"][hostname\"foodelivery.benvenutialfood.ch\"][uri\"/foodelivery.benvenutialfood.ch/wp-content/plugins/woofood-plugin/js/ajax_add_to_cart.js\"][unique_id\"Zru9qAxx1VOIWiUO2wg2qgAAAQI\"][TueAug1322:10:19.8078072024][security2:error][pid5197:tid5264][client3.109.59.242:0][client3.109.59.242]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof\"rx\(MSWebServicesClientProtocol\|WormlyBot\|webauth@cmcm\\\\\\\\.com\)\"against\"REQUEST_HEADERS:User- show less