XML-RPC is a protocol designed to allow remote communication between external applications and your WordPress site. However, XML-RPC comes with security vulnerabilities that can be easily exploited by hackers to attack your site. This module disables the XML-RPC protocol for your WordPress site, and reduce your site’s attack surface.
Activate the Disable XML-RPC Module
In the Admin Optimizer page, click to enable the Disable XMLRPC module. Press Save Changes to save the changes.
No configuration is required for this module to work.
Check if the Disable XML-RPC Module is Working
After activating this module, load the page <your-domain.com>/xmlrpc.php. It should show “You don’t have permission to access this file.“