WordPress.org

Ready to get started?Download WordPress

Forums

Statpress Visitors - strange entries under latest hits (7 posts)

  1. inthegap
    Member
    Posted 1 year ago #

    I have recently been getting strange entries with Statpress Visitor Latest Hits (on my page http://www.inthegapclothing.co.za) Under "page" there are quite a few entries that says things like:
    /wp-content/themes/suffusion-child/style.css?ver=4.3.1
    ver=4.3.1&suffusion-css=css
    /wp-content/themes/suffusion/cache/external_bc9cde94cc2cfbcbda476399d2980266.php?asc=echo%20'xx23423'.'2xxcv3'.'dcfxcx2xdf';die();
    /wp-content/themes/suffusion/timthumb.phptimthumb.php

    Now as far as I know these are back-end pages that only I as admin should be able to see and my Statpress options are set not to collect any data from logged in users, so I am not sure what exactly my visitors are seeing if this is logged as a hit??
    I tried putting in the url for one of them, but ended up on an error page.

    Does anyone else have the same problem? Any idea why this is showing instead of regular page entries?

    Will appreciate any feedback,thanks.

  2. Gawain Lynch
    Member
    Posted 1 year ago #

    It looks like a bot scanning your site to find vulnerable versions of TimThumb, of which there are a lot still out there in plugins and themes that haven't been updated in a long time.

  3. inthegap
    Member
    Posted 1 year ago #

    Hi Gawain, thanks for the feedback! Is there anything I can do about it? I haven't noticed this until recently after I updated Statpress Visitors. Would it be something in the settings then?

    Or is it something I should just ignore?

  4. Gawain Lynch
    Member
    Posted 1 year ago #

    Hey inthegap,

    The best thing you can do is make sure you keep plugins and themes up to date (and hope the authors of said software are keeping any libraries like this up to date as well).

    You're probably only seeing this now because you've been lucky enough to not be hit by these scans before. I used to just do a MySQL query and manually flush these things out of my db.

    I was working with Luciole135 on code to ignore requests unless they actually matched a page request, but the logic to do it blew the memory requirements of the plugin out of the water! :-D

  5. inthegap
    Member
    Posted 1 year ago #

    Thanks Gawain. As far as I know all my plugins and themes are up to date, so I will just have to ignore the entries then.
    Unless doing a MySQL query is something I can do? I am a newbie when it comes to any code, so I'm not even sure what that is.

  6. Gawain Lynch
    Member
    Posted 1 year ago #

    Well, I don't want to say you *can't* go and write your own queries... It's your site :-D. But messing around in the database backend is a very quick way to destroy your blog unless you know what you're doing.

    Personally I always have a development environment of each blog on a private server to mess around with things like that before trying it in production. So if that all just whistled past you, then yes just ignore the entries until you have the time and inclination to read up on MySQL and friends. Better to subtract 10% from your stats manually that rebuild your entire blog.

  7. inthegap
    Member
    Posted 1 year ago #

    Thanks! Duly noted and received. Think I'll be happy just looking over it for now :-)

    Thanks for the advice!

Topic Closed

This topic has been closed to new replies.

About this Topic