How to Disable XML-RPC in WordPress

Last modified: October 8, 2022

You are here:

KB Home
Hosting
Shared Hosting
CMS (Content Management System)
How to Disable XML-RPC in WordPress

Estimated reading time: < 1 min

In this article

1. How to Disable XML-RPC in WordPress
2. How to Disable WordPress XML-RPC with .htaccess

How to Disable XML-RPC in WordPress

All you have to do is paste the following code in a site-specific plugin:

add_filter(‘xmlrpc_enabled’, ‘__return_false‘);

Alternatively, you can just install the plugin called Disable XML-RPC. All you have to do is activate it. It does the exact same thing as the code above.

How to Disable WordPress XML-RPC with .htaccess

While the above solution is sufficient for many, it can still be resource intensive for sites that are getting attacked.

In those cases, you may want to disable all xmlrpc.php requests from the .htaccess file before the request is even passed onto WordPress.

Simply paste the following code in your .htaccess file:

# Block WordPress xmlrpc.php requests

order deny,allow
deny from all

Was this article helpful?

Like 0 Dislike 0

Mondoze Knowledge Base

Search our articles or browse by category below

How to Disable XML-RPC in WordPress

How to Disable XML-RPC in WordPress

How to Disable WordPress XML-RPC with .htaccess

24/7 Expert Support

Products

Company

Support

Partner Program