Signature Detail

Short Name	HTTP:PHP:WP-XML-RPC-PINGBACK-RQ
Severity	Medium
Recommended	Yes
Recommended Action	Drop
Category	HTTP
Keywords	WP WordPress PingBack XML RPC DDOS
Release Date	2014/07/23
Update Number	2402
Supported Platforms	idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: WordPress XML RPC Pingback Request

This signature detects WordPress XML RPC calls for the Pingback feature. Its more common use is as a Distributed Denial of Service (DDoS) attack against other WordPress sites. This Pingback functionality also has legitimate uses, but this signature will detect this activity regardless of intention. Per WordPress, it is recommended to disable this functionality. Documentation on how to disable it is found in the signature references.

References

URL: http://blog.sucuri.net/2014/03/more-than-162000-wordpress-sites-used-for-distributed-denial-of-service-attack.html

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: WordPress XML RPC Pingback Request

References