Unauthorized access on Xibo CMS

ti1_grupoembracon · October 4, 2024, 8:21pm

Hi.

CMS version 3.3.3

I noticed that frequently appears new entries in my CMS “Sessions” showing unknown IP’s from any part of the world and with blank user name.

In audit trail I could find only authorized users action and some without usernames, but without IP addresses as well what I assume that is some CMS internal actions (right?).

My CMS is exposed to internet accessible only through https and there are only 3 authorized users with secure passwords.

I could find only one topic here related to this problem and it was no help.

I would like to clarify what these session entries means. It could be related to display security since the displays hame my cms url configured on them?

Or could it be some module that is exposing the cms to unwanted access?

Schweminska · October 6, 2024, 7:09am

It shouldn’t be an issue. Just because there are sessions listed from unknown users doesn’t necessarily mean they’ve authenticated in the CMS. For example, public crawler bots will appear in the list, and if you’ve linked a service like UptimeRobot to monitor your site’s availability, those checks will also show up.

ti1_grupoembracon · October 7, 2024, 2:10pm

Thenk you for the response.

What worried me was the check in active column.

system · January 6, 2025, 8:10pm

This topic was automatically closed 91 days after the last reply. New replies are no longer allowed.