WordPress.org

Ready to get started?Download WordPress

Forums

Odd google searches for WP1.5.1.1 (6 posts)

  1. phiali
    Member
    Posted 8 years ago #

    Hi guys,

    I've just had some searches come to my site via the following google search strings:


    intext: \/wordpress \/ 1.5.1.1
    inurl:"wordpress" intext:"powered by wordpress 1.5.1.1"

    Does this mean that someone might be looking for sites to hack? I've gone and upgraded to 1.5.1.2 by replacing the wordpress/wp-includes/template-functions-category.php as was suggested in some other posts.

    But I'm still a little worried - am I being too paranoid here?

  2. Kafkaesqui

    Posted 8 years ago #

    Considering the sort of kiddies that are out there... (you can never be too paranoid when it comes to protecting your site).

  3. phiali
    Member
    Posted 8 years ago #

    Okay checking my logs for my site found this:

    http://0gravity.co.uk/wordpress/index.php?cat=%2527%20UNION%20SELECT%20CONCAT(CHAR(58),user_pass,CHAR(58),user_login,CHAR(58))%20FROM%20wp_users/*

    Host: 210.213.172.155
    Http Code: 412
    Date: Jun 23 07:53:54
    Http Version: HTTP/1.0
    Size in Bytes: 2861
    Referer: -
    Agent: lwp-trivial/1.38

    I take it this is the SQL injection attack that people have been speaking about?

    Thankfully my site just throws up a "not found" message....

  4. Mark (podz)
    Support Maven
    Posted 8 years ago #

    No - that's much more likely to be a spambot or similar.

    http://www.ioerror.us/software/bad-behavior/
    Install that plugin - download, unzip, upload, activate, forget

  5. James
    Happiness Engineer
    Posted 8 years ago #

    Yeah, wp-trivial is a rogue waste of bandwidth. If you can, add the following to your .htaccess file:

    SetEnvIfNoCase User-Agent wp-trivial spammer=yes

    Order allow,deny
    allow from all
    deny from env=spammer

    More info:

    http://codex.wordpress.org/Combating_Comment_Spam/Denying_Access

    http://www.macmerc.com/articles/Power_User_Monday_Tip_of_the_Week/302

    And, of course, get Bad Behavior (as Podz mentioned above).

  6. phiali
    Member
    Posted 8 years ago #

    Yip have had Bad Behavior up and running for about a week now. It's helped a load with spam (combined with SK2) and looks like it has reduced my bandwidth usage as well.

    Will implement the .htaccess stuff now.

    Thanks!
    Alistair

Topic Closed

This topic has been closed to new replies.

About this Topic