Home Forums WordPress Plugins Hide My WP MY SITE UNDER ATTACK

This topic is: not resolved
Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • November 10, 2016 at 11:45 pm #12775
    JohnEaglez

    My site is honestanime.com
    I have over 23 emails from Hide My WP saying

    The following potential attack has been detected by HMWP IDS

    . If it’s you please Exclude that parameter or increase Notify Threshold from IDS settings.
    In most cases you don’t need to do anything. Hide My WP protects you!

    IP: 212.83.40.239
    User ID:
    Date: 2016-11-10T23:34:30+00:00
    Total Impact: 32
    Affected tags: xss csrf id rfe lfi

    Affected parameters: REQUEST.<?xml_version=%26quot%3B1.0%26quot%3B+encoding%3D%26quot%3Biso-8859-1%26quot%3B%3F%26gt%3B%26lt%3BmethodCall%26gt%3B%26lt%3BmethodName%26gt%3Bwp.getUsersBlogs%26lt%3B%2FmethodName%26gt%3B%26lt%3Bparams%26gt%3B%26lt%3Bparam%26gt%3B%26lt%3Bvalue%26gt%3B%26lt%3Bstring%26gt%3Badmin%26lt%3B%2Fstring%26gt%3B%26lt%3B%2Fvalue%26gt%3B%26lt%3B%2Fparam%26gt%3B%26lt%3Bparam%26gt%3B%26lt%3Bvalue%26gt%3B%26lt%3Bstring%26gt%3Bviraldevour37%26lt%3B%2Fstring%26gt%3B%26lt%3B%2Fvalue%26gt%3B%26lt%3B%2Fparam%26gt%3B%26lt%3B%2Fparams%26gt%3B%26lt%3B%2FmethodCall%26gt%3B, POST.<?xml_version=%26quot%3B1.0%26quot%3B+encoding%3D%26quot%3Biso-8859-1%26quot%3B%3F%26gt%3B%26lt%3BmethodCall%26gt%3B%26lt%3BmethodName%26gt%3Bwp.getUsersBlogs%26lt%3B%2FmethodName%26gt%3B%26lt%3Bparams%26gt%3B%26lt%3Bparam%26gt%3B%26lt%3Bvalue%26gt%3B%26lt%3Bstring%26gt%3Badmin%26lt%3B%2Fstring%26gt%3B%26lt%3B%2Fvalue%26gt%3B%26lt%3B%2Fparam%26gt%3B%26lt%3Bparam%26gt%3B%26lt%3Bvalue%26gt%3B%26lt%3Bstring%26gt%3Bviraldevour37%26lt%3B%2Fstring%26gt%3B%26lt%3B%2Fvalue%26gt%3B%26lt%3B%2Fparam%26gt%3B%26lt%3B%2Fparams%26gt%3B%26lt%3B%2FmethodCall%26gt%3B,

    November 11, 2016 at 5:22 am #12779
    Suman M.
    Post count: 12480

    Hi, HMWP IDS detects malicious requests coming to your site and notify you about it. But all these requests might not be harmful and you need not worry as HMWP IDS will take care of this and will block the malicious requests if Impact level is more than 20 (default value specified in HMWP IDS). You can stop receiving emails regarding this by setting “Notification Threshold” option to 0 in IDS Firewall tab.

    Note: If in case, valid request is also listed as intrusion then hover over that request name and click on Exclude link to add it to exception list.

  • Author
    Posts
Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.