WordPress Firewall No Plugin (3 posts)

  1. spartyjoe
    Posted 4 years ago #


    I'm using WordPress Firewall 2 and it reported the following:

    WordPress Firewall has detected and blocked a potential attack!

    Web Page:
    Warning: URL may contain dangerous content!
    Offending IP: [ Get IP location ]
    Offending Parameter:
    $_FILE = index.bak.php

    This may be a "Executable File Upload Attack."

    I'm also using NextGEN Gallery v1.9.2, but not 1-flash-gallery plugin. Any ideas as how to start tracking down the root cause?

  2. kendawes
    Posted 4 years ago #

    Hi Joe,

    What Firewall 2 is reporting is that the attack was trying to exploit a (possible) vulnerability in 1-flash-gallery.

    If you had that plugin and didn't have Firewall 2, you might have a problem!

    Think of the WordPress attackers as having a really big keychain with lots and lots of keys that they keep trying on your door. They keep trying different keys in the hope that *one* of them will fit. Firewall 2 just lets you know that their key didn't work....


  3. kendawes
    Posted 4 years ago #

Topic Closed

This topic has been closed to new replies.

About this Topic