NGINX making bad requests after upgrade to 1.27.2

Perhaps not the post you will like to read, but unfortunately I can't sugarcoat it.

In the very short term, is your Wordpress installation up-to-date, including themes, plugins and any custom code? And for Centminmod, are you using the latest software, PHP, MariaDB etc alongside Nginx?

The future and long term.
The only solution is to keep both the server software as well as the website software up-to-date.
Of course make regular backups so you can always go back, should there is more damage, than originally thought.

Since a bot works automatically and is not manual human work, this bot and other bots are going to try to infect your system multiple times again, over and over again with multiple exploits.

Since CentOS 7 and CentOS 7 Centminmod is end of life, there is simply no choice, you will have to migrate once. Your system will get weaker and weaker over time because there will be no more updates at the security level, but more and more new software code leaks will become known all the time.

 

That's because of the fact that the packages are archived as of June 30, 2024.

Up-to-date in the sense of last code updated by author days ago or from i.e. last update in year 2022? Should a developer have stopped his project, Wordpress indicates up-to-date, which in fact, the code it is not.

Can't you rent a server for days or request a free server for migration? Some providers help their regular customers with that kind of migrations services.

 

Of course and that's why I raise Wordpress first at 'the very short term'.
But as I also wrote for the 'future', I think end of life CentOS 7 should really be looked at. If the system as a whole is continued at the current rate, I consider it downright likely that in the long run you'll be doing clean-ups (i.e. malicious code removal) every week/day. And that means the system will be exploited via both Wordpress code, as well as the OS.