gu-alvareza
2024-09-13 07:05:28
(3 weeks ago)
WordPress.REST.API.Username.Enumeration.Information.Disclosure
Web App Attack
BlueWire Hosting
2024-09-12 20:10:05
(3 weeks ago)
Probing for Wordpress vulnerabilities
Bad Web Bot
Web App Attack
TPI-Abuse
2024-09-12 17:26:52
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 34.169.42.36 (36.42.169.34.bc.googleusercontent ... show more (mod_security) mod_security (id:225170) triggered by 34.169.42.36 (36.42.169.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 12 13:26:46.323589 2024] [security2:error] [pid 2977793:tid 2977816] [client 34.169.42.36:51326] [client 34.169.42.36] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.miltonthepuppy.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.miltonthepuppy.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZuMkVr-UWS8PsJUixiHTWAAAABU"] show less
Brute-Force
Bad Web Bot
Web App Attack
Anonymous
2024-09-12 17:20:42
(3 weeks ago)
Bad Web Bot
Web App Attack
NotCool
2024-09-12 17:19:33
(3 weeks ago)
(XMLRPC) WP XMLPRC Attack 34.169.42.36 (US/United States/36.42.169.34.bc.googleusercontent.com): 10 ... show more (XMLRPC) WP XMLPRC Attack 34.169.42.36 (US/United States/36.42.169.34.bc.googleusercontent.com): 10 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER show less
Brute-Force
WeekendWeb
2024-09-12 17:05:13
(3 weeks ago)
Wordpress Vunerability attack
Web App Attack
TPI-Abuse
2024-09-12 17:02:44
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 34.169.42.36 (36.42.169.34.bc.googleusercontent ... show more (mod_security) mod_security (id:225170) triggered by 34.169.42.36 (36.42.169.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 12 13:02:36.102225 2024] [security2:error] [pid 29809:tid 29809] [client 34.169.42.36:55406] [client 34.169.42.36] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.rodandreelpiercam.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.rodandreelpiercam.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZuMerMKwTyCOPV-5sofgWgAAAB4"] show less
Brute-Force
Bad Web Bot
Web App Attack
cmbplf
2024-09-12 17:01:46
(3 weeks ago)
15.633 POST requests in 1 hour (1w1d11h)
Brute-Force
Bad Web Bot
Dolphi
2024-09-12 17:00:04
(3 weeks ago)
POST //xmlrpc.php
Brute-Force
Web App Attack
noise.agency
2024-09-12 16:41:06
(3 weeks ago)
(wordpress) Failed wordpress login from 34.169.42.36 (US/United States/36.42.169.34.bc.googleusercon ... show more (wordpress) Failed wordpress login from 34.169.42.36 (US/United States/36.42.169.34.bc.googleusercontent.com) show less
Brute-Force
Anonymous
2024-09-12 16:39:07
(3 weeks ago)
Malicious activity detected
Hacking
Brute-Force
TPI-Abuse
2024-09-12 16:38:22
(3 weeks ago)
(mod_security) mod_security (id:225170) triggered by 34.169.42.36 (36.42.169.34.bc.googleusercontent ... show more (mod_security) mod_security (id:225170) triggered by 34.169.42.36 (36.42.169.34.bc.googleusercontent.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Thu Sep 12 12:38:15.820494 2024] [security2:error] [pid 14754:tid 14761] [client 34.169.42.36:54225] [client 34.169.42.36] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||chaoticperception.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "chaoticperception.com"] [uri "/wp-json/wp/v2/users/"] [unique_id "ZuMY92Ygutgzar90UIY-DgAAAQQ"] show less
Brute-Force
Bad Web Bot
Web App Attack