Attacks on the mc4wp_form

Hi,

I have received some alerts from my security plugin for blocked attacks on the mc4wp_form:

novembre 1, 2018 10:10 109.73.229.120 (Bulgaria) Blocked for XSS: Cross Site Scripting in POST body: _mc4wp_form_id=1166″ onMouseOver=–>”>’>'”<vvv002058v809190>
novembre 1, 2018 10:10 109.73.229.120 (Bulgaria) Blocked for Directory Traversal in POST body: _mc4wp_form_id=/../../../../../../../../../../../../etc/passwd
novembre 1, 2018 10:10 109.73.229.120 (Bulgaria) Blocked for XSS: Cross Site Scripting in POST body: _mc4wp_form_id=1166′ onMouseOver=–>”>’>'”<vvv002060v809190>
novembre 1, 2018 10:10 171.6.249.97 (Thailand) Blocked for XSS: Cross Site Scripting in POST body: _mc4wp_honeypot=1″ onMouseOver=–>”>’>'”<vvv001818v809190>
novembre 1, 2018 10:10 171.6.249.97 (Thailand) Blocked for XSS: Cross Site Scripting in POST body: _mc4wp_honeypot=1′ onMouseOver=–>”>’>'”<vvv001820v809190>
novembre 1, 2018 10:10 171.6.249.97 (Thailand) Blocked for LFI: Local File Inclusion in POST body: _mc4wp_honeypot=/etc/passwd
novembre 1, 2018 10:10 171.6.249.97 (Thailand) Blocked for XSS: Cross Site Scripting in query string: attachment_id=539′ onMouseOver=–>”>’>'”<vvv001804v809190>
novembre 1, 2018 10:10 171.6.249.97 (Thailand) Blocked for XSS: Cross Site Scripting in query string: attachment_id=539″ onMouseOver=–>”>’>'”<vvv001802v809190>
novembre 1, 2018 10:10 171.6.249.97 (Thailand) Blocked for SQL Injection in POST body: _mc4wp_form_element_id=mc4wp-form-1′ UNION SELECT 8, table_name, ‘vega’ FROM information_schema.taables WHERE taable_name lê
novembre 1, 2018 10:10 171.6.249.97 (Thailand) Blocked for SQL Injection in POST body: _mc4wp_form_element_id=mc4wp-form-1′ UNION SELECT 8, table_name, ‘vega’ FROM information_schema.tables WHERE table_name likê

What are those attacks and how can I avoid them?

Could you also please increase the security of your plugin urgently because there seems to be security issues?

Thank you very much in advance for your answer.