WordPress.org

Ready to get started?Download WordPress

Forums

[resolved] Questionable 404's ? (4 posts)

  1. 1fullplate
    Member
    Posted 1 year ago #

    First, I'm new to WP.

    I've noticed a recent IP address with unusual 404's and wondered if anyone could give me their opinion, and suggestions for solutions if warranted.

    404 examples:

    404: login.php?action=quit
    404: modules.php?app=user_reg
    404: member.php?mod=logging&action=login

    These are just a few, there are many from the same IP, all along the same lines, with various commands. To me this, along with the others, appears as though they are seeking back door access, but I am new to this. Would really appreciate any feedback.

    Thank you so much!

    Ps- not sure it's relevant, but I've had others register through my site's registration form without a problem and its been tested several times.. http://fullplate.envyzage.com

  2. esmi
    Forum Moderator
    Posted 1 year ago #

    Looks like script kiddies trying to get into the site using generic forum-type variables in their urls. I wouldn't worry about them. Almost every site gets these all of the time.

  3. 1fullplate
    Member
    Posted 1 year ago #

    Thank you soooo much! I'm at the point of just starting to wrap my head around all of these things. Your insight is greatly appreciated! Have a super day! :)

  4. Viscosity
    Member
    Posted 1 year ago #

    I've noticed a recent IP address with unusual 404's and wondered if anyone could give me their opinion, and suggestions for solutions if warranted.
    
    404 examples:
    
    404: login.php?action=quit
    404: modules.php?app=user_reg
    404: member.php?mod=logging&action=login

    You can see that they are trying to target your php code and doing an SQL injection, doing a redirection of your sites or exploiting your login.

    These are just a few, there are many from the same IP, all along the same lines, with various commands.

    Very likely they are using an automatic program scanning and trying to exploit your site for vulnerability.

Topic Closed

This topic has been closed to new replies.

About this Topic