Blocked for SQL Injection in query string

  • Resolved mross55

    (@mross55)


    8 years, 6 months ago

    Wordfence has blocked 160 attacks over the last 10 minutes:

    November 8, 2017 2:29am 23.91.70.19 (United States) Blocked for SQL Injection in query string: i=all1111111111111″ UNION SELECT CHAR(45,120,49,45,81,45),CHAR(45,120,50,45,81,45),CHAR(45,120,51,45,8

    Anyone else getting this?

Viewing 5 replies - 1 through 5 (of 5 total)
  • mountainguy2

    (@mountainguy2)

    8 years, 6 months ago

    Attacks such as that are normal. Enjoy paying your ISP for the necessary bandwidth. It’s a jungle out there. MTN

    bluebearmedia

    (@bluebearmedia)

    8 years, 6 months ago

    Sounds like typical hacker traffic trying to poke holes in your site…
    That’s why you have Wordfence – it’s properly blocking them!

    If it gets to the point of that IP address hitting you so hard it’s almost a DoS, then block that IP using .htaccess…

    wfyann

    (@wfyann)

    8 years, 6 months ago

    Hi @mross55,

    These are indeed attempts to see if SQL injection is possible on your site; which is why Wordfence is blocking them.

    As suggested by @mountainguy2 and @bluebearmedia, it can reach a point when it has a significant impact on your resources.
    If it does always come from the same IP or short list of IPs then it makes sense to block them at .htaccess level.

    mountainguy2

    (@mountainguy2)

    8 years, 6 months ago

    Also, it should be said, recurring stuff is sometimes worth blocking at higher server level using ModSecurity, CSF or other solutions. If you’re serious about website get server access and start learning… it’s all a horrible burden that’s costing the world enormous amounts of time and money, but doesn’t appear to be stopping. Wordfence is terrific, but only the beginning of our arsenal in the bot wars. MTN

    Thread Starter mross55

    (@mross55)

    8 years, 6 months ago

    Thank you all for responding. 🙂
    I’ve manually blocked the ip’s permanently and keeping an eye out.
    If it wasn’t for Wordfence then the site would have been hacked. Impressive.

Viewing 5 replies - 1 through 5 (of 5 total)

The topic ‘Blocked for SQL Injection in query string’ is closed to new replies.