Title: Attack from china
Last modified: June 26, 2026

---

# Attack from china

 *  Resolved [fefed222](https://wordpress.org/support/users/fefed222/)
 * (@fefed222)
 * [1 week, 2 days ago](https://wordpress.org/support/topic/attack-from-china/)
 * Hello,
 * i don’t think it’s a problem but, Wordfence send me a notification of a Blocked
   for SQL Injection in query string
   here is a sample : uin 26, 2026 6:04am  36.133.36.177(
   China)     Blocked for SQL Injection in query string: sdm_process_download = 
   1′ AND 1075=(SELECT UPPER(XMLType(CHR(60)||CHR(58)||CHR(113)||CHR(98)||CHR(122)
   ||CHR(122)||CHR(113)|…Can you check in your side.Best regards

Viewing 5 replies - 1 through 5 (of 5 total)

 *  Plugin Contributor [mbrsolution](https://wordpress.org/support/users/mbrsolution/)
 * (@mbrsolution)
 * [1 week, 2 days ago](https://wordpress.org/support/topic/attack-from-china/#post-18948783)
 * Thank you for reaching out to us. Does your downloads have any type of protection?
   Or is it a free download offer?
 * Kind regards.
 *  Thread Starter [fefed222](https://wordpress.org/support/users/fefed222/)
 * (@fefed222)
 * [1 week, 2 days ago](https://wordpress.org/support/topic/attack-from-china/#post-18948796)
 * They are public. not protected.
   Last version of module is installed.Best regards
    -  This reply was modified 1 week, 2 days ago by [fefed222](https://wordpress.org/support/users/fefed222/).
 *  Plugin Contributor [mbrsolution](https://wordpress.org/support/users/mbrsolution/)
 * (@mbrsolution)
 * [1 week, 1 day ago](https://wordpress.org/support/topic/attack-from-china/#post-18949808)
 * Thank you for sharing that information. I am thinking that perhaps your site 
   has been targeted. I suggest that you now try to have a simple type of protection
   for your downloads to see what happens. The following documentation can help 
   you.
 * [https://simple-download-monitor.com/how-to-password-protect-your-wordpress-downloads/](https://simple-download-monitor.com/how-to-password-protect-your-wordpress-downloads/)
 * Let me know if this helps you.
 * Kind regards.
 *  Plugin Contributor [Ruhul](https://wordpress.org/support/users/tips-and-tricks-hq/)
 * (@tips-and-tricks-hq)
 * [1 week ago](https://wordpress.org/support/topic/attack-from-china/#post-18950554)
 * Thanks for flagging this. There’s nothing to be alarmed about here, what you’re
   seeing is a generic, automated SQL injection probe, not a successful breach.
 * Bots constantly scan WordPress sites and throw thousands of these injection payloads
   at known plugin parameters (in this case `sdm_process_download`) just to see 
   if anything sticks. The fact that Wordfence **blocked** it means your protection
   is doing exactly what it should. Importantly, the plugin sanitizes its query 
   inputs, so these attempts wouldn’t succeed against the download parameter even
   if Wordfence weren’t in front of them.
 * As long as the site is functioning normally and you’re on the latest plugin version(
   which you’ve confirmed), there’s no action you need to take. This kind of background
   noise is routine for any public-facing site.
 *  Thread Starter [fefed222](https://wordpress.org/support/users/fefed222/)
 * (@fefed222)
 * [6 days, 22 hours ago](https://wordpress.org/support/topic/attack-from-china/#post-18950704)
 * Hello,
 * thanks for your feedback.
 * best reagrds

Viewing 5 replies - 1 through 5 (of 5 total)

You must be [logged in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fattack-from-china%2F%3Foutput_format%3Dmd&locale=en_US)
to reply to this topic.

 * ![](https://ps.w.org/simple-download-monitor/assets/icon-128x128.png?rev=973803)
 * [Simple Download Monitor](https://wordpress.org/plugins/simple-download-monitor/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/simple-download-monitor/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/simple-download-monitor/)
 * [Active Topics](https://wordpress.org/support/plugin/simple-download-monitor/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/simple-download-monitor/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/simple-download-monitor/reviews/)

 * 5 replies
 * 3 participants
 * Last reply from: [fefed222](https://wordpress.org/support/users/fefed222/)
 * Last activity: [6 days, 22 hours ago](https://wordpress.org/support/topic/attack-from-china/#post-18950704)
 * Status: resolved