TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.comp ... show more(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 13 22:44:31.841109 2024] [security2:error] [pid 2541:tid 2541] [client 52.15.105.114:56137] [client 52.15.105.114] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||nickp.us|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "nickp.us"] [uri "/xmlrpc.php/wp-json/wp/v2/users"] [unique_id "ZuT4j48755nSFO45NzHEqwAAAAY"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.comp ... show more(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 13 22:09:07.788378 2024] [security2:error] [pid 21363:tid 21363] [client 52.15.105.114:50999] [client 52.15.105.114] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.transstrategies.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.transstrategies.net"] [uri "/xmlrpc.php/wp-json/wp/v2/users"] [unique_id "ZuTwQ2hm7_bF_EpFWfIUaQAAAAk"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.comp ... show more(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 13 20:56:02.719611 2024] [security2:error] [pid 20878:tid 20878] [client 52.15.105.114:57575] [client 52.15.105.114] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.oshadega.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.oshadega.com"] [uri "/xmlrpc.php/wp-json/wp/v2/users"] [unique_id "ZuTfIog3Nlk-ETgtKn9eTAAAAAY"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.comp ... show more(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 13 20:17:05.916739 2024] [security2:error] [pid 10367:tid 10367] [client 52.15.105.114:54402] [client 52.15.105.114] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||harbouronline.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "harbouronline.com"] [uri "/xmlrpc.php/wp-json/wp/v2/users"] [unique_id "ZuTWAbGbHXLjuj6Z_oQ6eQAAAAY"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.comp ... show more(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 13 19:54:28.635068 2024] [security2:error] [pid 17928:tid 17928] [client 52.15.105.114:54972] [client 52.15.105.114] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.elpaco.net|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.elpaco.net"] [uri "/xmlrpc.php/wp-json/wp/v2/users"] [unique_id "ZuTQtI7ZO0Xd33ZzQA7pTwAAAAw"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.comp ... show more(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 13 19:13:27.582611 2024] [security2:error] [pid 1580285:tid 1580306] [client 52.15.105.114:63235] [client 52.15.105.114] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.rawhabitat.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.rawhabitat.com"] [uri "/xmlrpc.php/wp-json/wp/v2/users"] [unique_id "ZuTHF-obzgNjkMkXnfOdVQAAAFE"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.comp ... show more(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 13 18:09:15.830618 2024] [security2:error] [pid 7928:tid 7928] [client 52.15.105.114:57645] [client 52.15.105.114] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||go4food.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "go4food.com"] [uri "/blog/xmlrpc.php/wp-json/wp/v2/users"] [unique_id "ZuS4C0Aj8mqBXDqmydW4bAAAAAA"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.comp ... show more(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 13 17:54:08.272138 2024] [security2:error] [pid 3594059:tid 3594059] [client 52.15.105.114:51504] [client 52.15.105.114] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.greatchristianadventure.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.greatchristianadventure.com"] [uri "/xmlrpc.php/wp-json/wp/v2/users"] [unique_id "ZuS0gNSgOOM41SucbcZHfAAAABo"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.comp ... show more(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 13 17:28:25.090986 2024] [security2:error] [pid 12022:tid 12022] [client 52.15.105.114:57643] [client 52.15.105.114] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.calvarycavaliers.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.calvarycavaliers.org"] [uri "/wp-json/wp/v2/users"] [unique_id "ZuSuec4E5hMZQyuzcENSWwAAAB8"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.comp ... show more(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 13 17:01:21.225986 2024] [security2:error] [pid 20685:tid 20685] [client 52.15.105.114:49628] [client 52.15.105.114] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||nessmonsters.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "nessmonsters.com"] [uri "/xmlrpc.php/wp-json/wp/v2/users"] [unique_id "ZuSoIVcxF4uQKOOFovmK4AAAAAU"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.comp ... show more(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 13 16:23:44.835655 2024] [security2:error] [pid 15524:tid 15524] [client 52.15.105.114:61083] [client 52.15.105.114] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||mjkhan.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "mjkhan.com"] [uri "/xmlrpc.php/wp-json/wp/v2/users"] [unique_id "ZuSfUNZOnNnab9aS7oCHlgAAAAI"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.comp ... show more(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 13 16:03:49.584452 2024] [security2:error] [pid 26084:tid 26084] [client 52.15.105.114:52551] [client 52.15.105.114] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||cuulart.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "cuulart.com"] [uri "/wp-json/wp/v2/users"] [unique_id "ZuSapcpmRuZU7frU6z2r7AAAACA"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.comp ... show more(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 13 15:43:34.978821 2024] [security2:error] [pid 24128:tid 24128] [client 52.15.105.114:59843] [client 52.15.105.114] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.247.fishing|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.247.fishing"] [uri "/wp-json/wp/v2/users"] [unique_id "ZuSV5rcnbZcwRwUU8Ao8GwAAAAE"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.comp ... show more(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 13 15:24:44.679085 2024] [security2:error] [pid 28111:tid 28111] [client 52.15.105.114:60666] [client 52.15.105.114] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.exhaustthelimits.org|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.exhaustthelimits.org"] [uri "/xmlrpc.php/wp-json/wp/v2/users"] [unique_id "ZuSRfBc_Yms03e5y1DrdUwAAABQ"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|
TPI-Abuse
|
|
(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.comp ... show more(mod_security) mod_security (id:225170) triggered by 52.15.105.114 (ec2-52-15-105-114.us-east-2.compute.amazonaws.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Fri Sep 13 14:55:09.312838 2024] [security2:error] [pid 13627:tid 13627] [client 52.15.105.114:59200] [client 52.15.105.114] ModSecurity: Access denied with code 403 (phase 2). Operator EQ matched 0 at REQUEST_COOKIES_NAMES. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/26_Apps_WordPress.conf"] [line "155"] [id "225170"] [rev "3"] [msg "COMODO WAF: Sensitive Information Disclosure Vulnerability in WordPress 4.7 (CVE-2017-5487)||www.discountphotogifts.com|F|2"] [severity "CRITICAL"] [tag "CWAF"] [tag "WordPress"] [hostname "www.discountphotogifts.com"] [uri "/blog/xmlrpc.php/wp-json/wp/v2/users"] [unique_id "ZuSKjVqeRBHO5UkeZNogygAAAAM"] show less
|
Brute-Force
Bad Web Bot
Web App Attack
|
|