Disable XMLRPC Pingback Plugin

Price: FREE
Sold By: WordPressLLC.comWordPressLLC.com

Contributors: samuelaguilera
Tags: xml-rpc, xml, rpc, pingback, ddos, firewall
Requires at least: 4.8
Tested up to: 5.3
Requires PHP: 5.6
Stable tag: 1.2.1
License: GPLv2
License URI: http://www.gnu.org/licenses/gpl-2.0.html

Stops abuse of your site's XML-RPC by simply removing some methods used by attackers. While you can use the rest of XML-RPC methods.

== Description ==

Stops abuse of your site's XML-RPC by simply removing some methods used by attackers. While you can use the rest of XML-RPC methods.

This is more friendly than disabling totally XML-RPC, that it's needed by some plugins and apps (I.e. Mobile apps or some Jetpack's modules).

= Features =

Removes the following methods from XML-RPC interface.

* pingback.ping
* pingback.extensions.getPingbacks
* X-Pingback from HTTP headers. This will hopefully stops some bots from trying to hit your xmlrpc.php file.

= Requirements =

* WordPress 3.8.1 or higher.

== Installation ==

* Extract the zip file and just drop the contents in the wp-content/plugins/ directory of your WordPress installation (or install it directly from your dashboard) and then activate the plugin from Plugins page.
* There's not options page, simply install and activate.

== Changelog ==

= 1.2.1 =

* Minor changes to make code 100% compliant with WordPress Coding Standards.

= 1.2 =

* Added support for X-Pingback header removal in recent versions of WP.

= 1.1 =

* Added code to remove X-Pingback from HTTP headers as suggested by user https://wordpress.org/support/topic/remove-x-pingback-http-header

= 1.0 =

* Initial release.

Disable XMLRPC Pingback Plugin
Price: FREE

Stops abuse of your site's XML-RPC by simply removing some methods used by attackers.

View Cart