{"id":12674,"date":"2026-05-30T12:14:39","date_gmt":"2026-05-30T12:14:39","guid":{"rendered":"http:\/\/saimeeraa"},"modified":"2026-05-30T12:14:39","modified_gmt":"2026-05-30T12:14:39","slug":"how-to-block-xmlrpc-attacks-at-cpanel-2","status":"publish","type":"post","link":"https:\/\/www.webystrata.in\/blog\/how-to-block-xmlrpc-attacks-at-cpanel-2\/","title":{"rendered":"How to block xmlrpc attacks at cpanel"},"content":{"rendered":"<p>xmlrpc.com is a WordPress file that was intended to be used for API\u2019s but lately it\u2019s more and more used as a way for hackers to brute-force WordPress installations.<\/p>\n<p>To block access to xmlrpc.php on a single WordPress installation add the following code to your .htaccess file:<\/p>\n<blockquote>\n<pre class=\"wp-block-code copy-the-code-target\"><code># Block XML-RPC\n&lt;Files xmlrpc.php&gt;\norder deny,allow\ndeny from all\nallow from 127.0.0.1,\n&lt;\/Files&gt;\n# END WordPress<\/code><button class=\"copy-the-code-button\" title=\"Copy to Clipboard\" data-style=\"button\">Copy<\/button><\/pre>\n<\/blockquote>\n<div class=\"wp-block-spacer\" aria-hidden=\"true\"><\/div>\n","protected":false},"excerpt":{"rendered":"<p>xmlrpc.com is a WordPress file that was intended to be used for API\u2019s but lately it\u2019s more and more used as a way for hackers to brute-force WordPress installations. To block access to xmlrpc.php on a single WordPress installation add the following code to your .htaccess file: # Block XML-RPC &lt;Files xmlrpc.php&gt; order deny,allow deny [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":12696,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2,1],"tags":[6,7],"class_list":["post-12674","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cpanel","category-latest-updates","tag-how-to-block-xmlrpc-attacks-at-cpanel","tag-xmlrpc-block-in-cpanel"],"_links":{"self":[{"href":"https:\/\/www.webystrata.in\/blog\/wp-json\/wp\/v2\/posts\/12674","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.webystrata.in\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.webystrata.in\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.webystrata.in\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.webystrata.in\/blog\/wp-json\/wp\/v2\/comments?post=12674"}],"version-history":[{"count":0,"href":"https:\/\/www.webystrata.in\/blog\/wp-json\/wp\/v2\/posts\/12674\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.webystrata.in\/blog\/wp-json\/wp\/v2\/media\/12696"}],"wp:attachment":[{"href":"https:\/\/www.webystrata.in\/blog\/wp-json\/wp\/v2\/media?parent=12674"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.webystrata.in\/blog\/wp-json\/wp\/v2\/categories?post=12674"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.webystrata.in\/blog\/wp-json\/wp\/v2\/tags?post=12674"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}