xmlrpc.php | Welcome to Pariswells.com

xmlrpc.php

November 9, 2019
Wordpress
0 Comments
paris

Recently in the server logs I saw lots of attempts to /xmlrpc.php

/xmlrpc.php is the file used for Pingbacks, so if someone links to my blog , they can add my blog article and WordPress will check in then create a link to the users site. This actually opens up wordpress sites to be used for DOS’ people

https://www.trustwave.com/en-us/resources/blogs/spiderlabs-blog/wordpress-xml-rpc-pingback-vulnerability-analysis/

You can disable access to this file via updating .htaccess

# Block WordPress xmlrpc.php requests
<Files xmlrpc.php>
order deny,allow
deny from all
</Files>

2 Stars

3 Stars

4 Stars

5 Stars

(No Ratings Yet)

Loading...

Andrea Rochira Well, this solution still works in 2023 and better than PowerShell! Thank you.
Copy file to workstations with Windows Intune · September 19, 2023
Emre Temel Thank you for this information. You save my life. 🙂
Exchange Setup – A required audit event could not be generated for the operation · September 18, 2023
Ilya L Missing \ before *, other than that, 👍. Schedule it to run monthly via Task Scheduler... 👍👍
Script to Delete ServiceWorker Cache on Google Chrome and Microsoft Edge · August 20, 2023
jack Thank you paris, one server got stuck on the SSPI failed and the solutution fixed it!!
Using Powershell to Send Emails via Mimecast · August 2, 2023
Maurece The information I needed when I needed it, Thanks Pariswells.com
Mimecast – Relaying from External to External using a forward ( External Relay ) · April 13, 2023

Powered by WordPress | Made with ❤ by Themely