Forums

WordPress › Support » How-To and Troubleshooting

[resolved] Are these SQL-injection attacks? (3 posts)

  1. micromaniac
    Member
    Posted 10 months ago #

    I installed the plugin 'Firewall' and received 84 alerts from one IP.
    90% of them where directs to my 404 page, but some of them tryed to download files.

    Can you guys tell me if these url's are SQL-injections?
    http://www.blog.pcbeveiligen.nl/?widget_id=2&twituser=PCBeveiligen&twitcount=5&get_twitter_data=1

    http://www.blog.pcbeveiligen.nl/belangrijk/veilig-internetbankieren-met-ing-een-aantal-feiten-op-een-rij/null

    http://www.blog.pcbeveiligen.nl/belangrijk/veilig-internetbankieren-met-ing-een-aantal-feiten-op-een-rij/?mystique=jquery_init&ver=2.4.2

    http://www.blog.pcbeveiligen.nl/wp-content/plugins/wp-spamfree/js/wpsf-js.php

    http://www.blog.pcbeveiligen.nl/wp-content/plugins/wp-spamfree/img/wpsf-img.php

    http://www.blog.pcbeveiligen.nl/belangrijk/veilig-internetbankieren-met-ing-een-aantal-feiten-op-een-rij/?mystique=css

    The rest of the url's where:
    http://www.blog.pcbeveiligen.nl/404/

    'Firewall' says:
    This may be a "WordPress-Specific SQL Injection Attack."

  2. esmi
    Theme Diva & Forum Moderator
    Posted 10 months ago #

    None of those urls look suspicious to me.

  3. MickeyRoush
    Member
    Posted 10 months ago #

    Examine your server logs. Search for that particular IP and see what the server logs say.

Reply

You must log in to post.

About this Topic

Tags