|
๐ฉ๐ช
YF
|
|
WordPress author enumeration
|
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 50.87.144.13 (gator2013.hostgator.com): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 50.87.144.13 (gator2013.hostgator.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 14:31:17.716740 2026] [security2:error] [pid 18399:tid 18420] [client 50.87.144.13:59566] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||chelseyrae.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "chelseyrae.com"] [uri "/wp-json/wp/v2/users/7"] [unique_id "akFodWPz2elaDs7VIEhqqwAAAFI"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐ฉ๐ช
FeG Deutschland
|
|
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 124
|
Exploited Host
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 50.87.144.13 (gator2013.hostgator.com): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 50.87.144.13 (gator2013.hostgator.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 10:19:47.499589 2026] [security2:error] [pid 7536:tid 7536] [client 50.87.144.13:18608] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||prostar.industries|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "prostar.industries"] [uri "/wp-json/wp/v2/users"] [unique_id "akEtgzBalco28bv5DzM-OQAAABE"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
mnsf
|
|
Abuse Detected (1)
|
Brute-Force
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 50.87.144.13 (gator2013.hostgator.com): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 50.87.144.13 (gator2013.hostgator.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 10:03:10.197771 2026] [security2:error] [pid 14436:tid 14436] [client 50.87.144.13:32090] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||gvimmobilier.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "gvimmobilier.com"] [uri "/wp-json/wp/v2/users/10"] [unique_id "akEpno_gd0iq7AiQGYN3DQAAAA4"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 50.87.144.13 (gator2013.hostgator.com): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 50.87.144.13 (gator2013.hostgator.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 09:17:54.115460 2026] [security2:error] [pid 25531:tid 25533] [client 50.87.144.13:10402] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||maroontribe.philacentric.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "maroontribe.philacentric.com"] [uri "/wp-json/wp/v2/users/8"] [unique_id "akEfAhNqWpzk-41tp3cbRAAAAAA"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 50.87.144.13 (gator2013.hostgator.com): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 50.87.144.13 (gator2013.hostgator.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 08:32:10.582832 2026] [security2:error] [pid 4260:tid 4260] [client 50.87.144.13:43250] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||bickleton.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "bickleton.org"] [uri "/wp-json/wp/v2/users"] [unique_id "akEUSn20GZG7rzhZDmgrmAAAAAI"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 50.87.144.13 (gator2013.hostgator.com): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 50.87.144.13 (gator2013.hostgator.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 07:53:02.238055 2026] [security2:error] [pid 5724:tid 5853] [client 50.87.144.13:51404] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||jimlawrencesongs.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "jimlawrencesongs.com"] [uri "/wp-json/wp/v2/users"] [unique_id "akELHmjf3rWlQs0OSN0UBgAAAo8"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 50.87.144.13 (gator2013.hostgator.com): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 50.87.144.13 (gator2013.hostgator.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 06:45:30.853058 2026] [security2:error] [pid 6446:tid 6446] [client 50.87.144.13:25684] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||vanmeer.info|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "vanmeer.info"] [uri "/wp-json/wp/v2/users/2"] [unique_id "akD7Sod1e2G_i--KiYqFZwAAAAQ"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐บ๐ธ
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 50.87.144.13 (gator2013.hostgator.com): 1 in th ...
show more
(mod_security) mod_security (id:225170) triggered by 50.87.144.13 (gator2013.hostgator.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Jun 28 02:57:20.872223 2026] [security2:error] [pid 2021:tid 2021] [client 50.87.144.13:28754] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||michaelthompson.biz|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "michaelthompson.biz"] [uri "/wp-json/wp/v2/users/me"] [unique_id "akDF0FcwSpcpRa_pwx5CZwAAAAk"]
show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
|
๐ฉ๐ช
FeG Deutschland
|
|
Looking for CMS/PHP/SQL vulnerablilities/excessive crawling - 2
|
Exploited Host
Web App Attack
|
|
|
๐จ๐ฟ
ptlab
|
|
Detected wp_login attack from WP-host.
|
Hacking
Web App Attack
|
|
|
Anonymous
|
|
| CMS scanner: 3 domains targeted (CMS (WordPress or Joomla) login attempt.)
|
Web App Attack
Hacking
SQL Injection
|
|
|
๐ซ๐ท
tecnicorioja
|
|
wp-login attack [27/Jun/2026:05:44:51
|
Brute-Force
Web App Attack
|
|