Jili rich download for pc,Global Games Queenstown.Recharge Every day and Get Bonus up-to 50%!

leapyear16
(@leapyear16)

8 years, 9 months ago

Everytime a person requests a page from my website and it returns a 404, the details like ip are logged using wordfence.

With the help of wordfence plugin, I have been able to put together a list of attacks to my website in which the attackers (I suspect)are looking for vulnerabilities in plugins by using a url like:

mywebsite.com/wp-content/plugins/bepro-listings/css/generic_listings_1.css

The most notorious requests are from Croatia, Russia and France. Bepro plugin must be having a vulnerability because the requests are so many for that plugin.

Here is a list of other requests that the attackers have made to my website and which I suspect that the plugins are having vulnerabilities that the attackers have discovered in them.

WP Marketplace Plugin:

https://example.com/wp-content/plugins/wpmarketplace/readme.txt

NextGEN plugin
https://example.com/wp-content/plugins/nextgen-gallery/changelog.txt

User Photo Plugin
https://example.com/wp-content/plugins/user-photo/admin.css

ckeditor for wordpress
https://example.com/wp-content/plugins/ckeditor-for-wordpress/ckeditor.config.js

***And several others as shown below:

https://example.com/wp-content/plugins/resume-submissions-job-postings/installer.php

https://example.com/wp-content/plugins/user-meta/readme.txt

https://example.com/wp-content/plugins/category-grid-view-gallery/cat_grid.php

https://example.com/wp-content/plugins/cimy-user-extra-fields/README_OFFICIAL.txt

https://example.com/wp-content/plugins/wp-homepage-slideshow/functions.php

https://example.com/wp-content/plugins/nmedia-user-file-uploader/readme.txt

https://example.com/wp-content/plugins/wpstorecart/lgpl.txt

https://example.com/wp-content/plugins/fcchat/default.png

https://example.com/wp-content/plugins/auto-attachments/a-a.css

https://example.com/wp-content/plugins/font-uploader/font-uploader-free.php

https://example.com/wp-content/plugins/coursepress/js/jquery.knob.js

https://example.com/wp-content/plugins/bepro-listings/css/generic_listings_1.css

https://example.com/wp-content/plugins/wp-yasslideshow/css/data_tables.css

Viewing 1 replies (of 1 total)

Paul Gilzow
(@gilzow)

8 years, 9 months ago

They are most likely scanning your site to see what plugins/themes you have installed and if any of them have a known vulnerability.

Viewing 1 replies (of 1 total)

The topic ‘Are These Vulnerabilities? I have Compiled a List’ is closed to new replies.

Are These Vulnerabilities? I have Compiled a List

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics