For the last few weeks I have been getting the alert produced below from a wordpress site. I do not know what to do about it and it is freaking me a bit. I use a WP Firewall2 on this site so it is that plugin that is sending the alerts.
Like I say, these alerts come two or three times a day and have been for about three weeks. There is not obvious problem with the site.
I would appreciate any advice.
WordPress Firewall has detected and blocked a potential attack!
Web Page: www.mysitename.co.uk/wp-login.php
Warning: URL may contain dangerous content!
Offending IP: 18.104.22.168 [ Get IP location ]
Offending Parameter: log = wp_admin
This may be a "WordPress-Specific SQL Injection Attack."
Thank you, I'll stop worrying now.
All popular web apps with past known vulnerabilities get random probes from bots looking for exploitable systems. They're generally not targetting a particular site or host. Normally these probes would go undetected and cause no harm as long as the site is secure, the firewalls alerts are a reminder of how important it is to keep your installations up to date.