Someone is trying to hack my website

  • Unknown's avatar
    hrvatskauzivo · Member ·

    Someone is trying in last few days to hack my website.

    They tried with Brute force attacks. I installed Wordfence plugin and change the defult url for wordpress login.,

    Now i see in Wordfence dashboard that some one from France tried to open this URL paths to my website

    EXAMPLES ARE

    MY DOMAIN NAME/up_auto_log=true
    AND
    MY DOMAIN NAME/wp-admin/admin-post.php?page=wysija_campaigns&action=themes

    Upon my research on google those urls were used by some plugins to inject malicious codes and takeover the website.

    I have these plugins installed:

    Akismet Anti-Spam
    Classic Editor
    Contact Form 7
    Display Posts
    Easy Google Fonts
    Google Fonts Typography
    Insert Headers and Footers
    Menu Image
    Mobile Menu
    One Click Demo Import
    Recent Posts Widget With Thumbnails
    Sassy Social Share
    Simple Custom CSS
    TinyMCE Advanced
    Wordfence Security
    WP Post Author
    WP Sticky Sidebar
    WP-Optimize – Clean, Compress, Cache
    WPS Hide Login
    Yoast SEO

    Also someone tried to open url MY DOMAIN ///xmlrpc.php

    ANY tips? Suggestions? Did you have had this sorts of attacks?

  • Unknown's avatar
    staartmees · Member ·

    What is the URL of your site as it looks you are talking about a site using the open source wordpress.org.

  • kokkieh · Staff ·

    Hi there,

    Please ask the WordPress.org community for advice at https://wordpress.org/support/forums/, or contact your hosting provider directly for help.

    The site you’re speaking of is not hosted with us on WordPress.com, so we have no control over it and aren’t able to help you with this.

  • The topic ‘Someone is trying to hack my website’ is closed to new replies.