SQL Injection Attack | WordPress.org

Resolved DarkCoder
(@darkcod3r)

3 years, 9 months ago

Hi. I am seeing too many SQL Injection attacks blocked by wordfence, targeting this plugin. Should i need to worry about it.?! is this plugin has some kind of un-fixed exploit?! Thank You
Kindly Check Below SS.
https://i.ibb.co/ySWbjNm/hack-attack.jpg

Viewing 3 replies - 1 through 3 (of 3 total)

Plugin Author WPKube
(@wpkube)

3 years, 9 months ago

Hi @darkcod3r

The value of the “sra” is referred to the action being done. The code checks for specific values to determine what’s being done, it’s not part of an SQL query.

Should be just a random attempt (not targeting a specific exploit), the bot finds GET parameters in the URL and tries an SQL injection.

But we’ll of course dig deeper into it to make sure.

Thread Starter DarkCoder
(@darkcod3r)

3 years, 9 months ago

OK. Thanks

Plugin Author WPKube
(@wpkube)

3 years, 9 months ago

You’re welcome and thanks for letting us know.

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘SQL Injection Attack’ is closed to new replies.

Tags

In: Plugins
3 replies
2 participants
Last reply from: WPKube
Last activity: 3 years, 9 months ago
Status: resolved