Support » Plugin: NinjaFirewall (WP Edition) - Advanced Security Plugin and Firewall » Some critical/high firewall protocols, I would like to have a review

  • Resolved mabox

    (@mabox)


    I have some entries in the log where I am unsure. However, these are blocked by Ninja as far as I understand, right?

    05/May/21 20:49:36 #7062220 CRITICAL 1398 192.151.156.189 GET /wp-admin/admin-ajax.php – Unauthenticated action – [REQUEST:action = uploadFontIcon]

    `04/May/21 14:41:48 #2886566 HIGH 310 79.124.62.250 GET /wp-admin/admin.php – Access to a configuration file – [GET:item = ../wp-config.php]

    04/May/21 14:41:49 #2149337 HIGH 310 79.124.62.250 GET /wp-admin/admin.php – Access to a configuration file – [GET:file = ../wp-config.php]

    04/May/21 14:41:50 #3949453 HIGH 310 79.124.62.250 GET /wp-admin/edit.php – Access to a configuration file – [GET:backup = ../wp-config.php]

    04/May/21 14:41:51 #1127365 HIGH 310 79.124.62.250 GET /wp-admin/edit.php – Access to a configuration file – [GET:path = ../wp-config.php]

    04/May/21 14:43:41 #8501591 HIGH – 79.124.62.250 GET /wp-includes/functions.php – Forbidden direct access to PHP script – [/wp-includes/functions.php]

    04/May/21 20:11:44 #5886673 HIGH 310 45.130.151.90 GET /wp-admin/admin-ajax.php – Access to a configuration file – [GET:file = ../wp-config.php]

    04/May/21 20:11:45 #5648195 HIGH 310 45.130.151.90 GET /wp-admin/admin-ajax.php – Access to a configuration file – [GET:img = ../wp-config.php]

Viewing 2 replies - 1 through 2 (of 2 total)
  • Plugin Author nintechnet

    (@nintechnet)

    Yes, unless stated otherwise, what you see in the log was blocked.
    The first line is an attempt to use a critical vulnerability in the Kaswara Modern VC Addons plugin, the rest are various probes by hackers’ bots.
    Nothing unusual these days 🙂

    Thread Starter mabox

    (@mabox)

    Great, thank you very much for your great work.

Viewing 2 replies - 1 through 2 (of 2 total)
  • You must be logged in to reply to this topic.