๐ซ๐ท
masterguru
2026-07-06 08:36:07
(6 hours ago)
(modsec_5040) ModSec 5040: API Basic Auth blocked from 47.251.82.1 (US/United States/-): 1 in the la ...
show more
(modsec_5040) ModSec 5040: API Basic Auth blocked from 47.251.82.1 (US/United States/-): 1 in the last 3600 secs (0-196)
show less
Hacking
๐ฉ๐ช
FeG Deutschland
2026-07-06 08:31:43
(6 hours ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 27
Exploited Host
Web App Attack
Anonymous
2026-07-06 04:46:15
(10 hours ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐ฒ๐น
Malta
2026-07-06 03:55:17
(10 hours ago)
47.251.82.1 - - [06/Jul/2026:05:55:17 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Linux x8 ...
show more
47.251.82.1 - - [06/Jul/2026:05:55:17 +0200] "POST /xmlrpc.php HTTP/1.1" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/133.0.0.0 Safari/537.36 Edg/133.0.0.0"
Brute-force password attempt
show less
Hacking
Web App Attack
Brute-Force
๐บ๐ธ
TPI-Abuse
2026-07-06 03:43:34
(11 hours ago)
(mod_security) mod_security (id:225170) triggered by 47.251.82.1 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:225170) triggered by 47.251.82.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 23:43:30.613842 2026] [security2:error] [pid 19213:tid 19213] [client 47.251.82.1:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||kirklandhighlands.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "kirklandhighlands.org"] [uri "/wp-json/wp/v2/users/me"] [unique_id "akskYpApOZUFmBIYatHAMQAAAAo"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-05 22:58:25
(15 hours ago)
(mod_security) mod_security (id:225170) triggered by 47.251.82.1 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:225170) triggered by 47.251.82.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jul 05 18:58:20.662237 2026] [security2:error] [pid 19601:tid 19601] [client 47.251.82.1:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||duct.cloudex.click|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "duct.cloudex.click"] [uri "/wp-json/wp/v2/users/me"] [unique_id "akrhjNVJtZRSCgMQ4Ev4_gAAABA"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐ฉ๐ช
ger-stg-sifi1
2026-07-05 21:15:07
(17 hours ago)
(wordpress) Failed wordpress login using wp-login.php or xmlrpc.php
Web App Attack
๐ฉ๐ช
barbarella
2026-07-05 13:39:28
(1 day ago)
unauthorized access to Visual Studio Code - SFTP Extension (GET /wp-json/wp/v2/users/me)
Hacking
Web App Attack
๐ฉ๐ช
neckaralb-admin.de
2026-07-05 11:42:44
(1 day ago)
(wordpress) Failed login wp-login.php or xmlrpc.php
Web App Attack
๐ฒ๐ฝ
octageeks.com
2026-07-05 04:13:03
(1 day ago)
Wordpress malicious attack:[octawp]
Web App Attack
๐ฉ๐ช
FeG Deutschland
2026-07-04 22:05:16
(1 day ago)
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2
Exploited Host
Web App Attack
๐บ๐ธ
TPI-Abuse
2026-07-04 19:17:55
(1 day ago)
(mod_security) mod_security (id:225170) triggered by 47.251.82.1 (-): 1 in the last 300 secs; Ports: ...
show more
(mod_security) mod_security (id:225170) triggered by 47.251.82.1 (-): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sat Jul 04 15:17:49.733908 2026] [security2:error] [pid 1305:tid 1305] [client 47.251.82.1:0] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||avaliantlife.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "avaliantlife.com"] [uri "/wp-json/wp/v2/users/me"] [unique_id "aklcXUE0mNZKzowMAYMplgAAABc"]
show less
Brute-Force
Bad Web Bot
Web App Attack
๐บ๐ธ
integrantservices.com
2026-07-04 15:54:34
(1 day ago)
(wordpress) Failed wordpress login from 47.251.82.1 (US/United States/-)
Brute-Force
Anonymous
2026-07-04 00:07:01
(2 days ago)
Automated web scanner. Requested suspicious paths: /wp-sitemap-users-1.xml. UTC: 2026-07-03 23:20:54 ...
show more
Automated web scanner. Requested suspicious paths: /wp-sitemap-users-1.xml. UTC: 2026-07-03 23:20:54.
show less
Web App Attack
๐บ๐ธ
ph
2026-07-03 23:20:26
(2 days ago)
Bad web bot attempting to run xmlrpc.php on non-WP site
Hacking
Bad Web Bot
Web App Attack