Home > CMS Tutorial > WordPress > Why should xmlrpc.php be deleted?

Why should xmlrpc.php be deleted?

藏色散人
Release: 2020-10-08 17:25:57
Original
3080 people have browsed it

Deleting xmlrpc.php can prevent attackers from remotely injecting malicious xml. The deletion method is to find and open the WordPress root directory, and then directly delete the xmlrpc.php file.

Why should xmlrpc.php be deleted?

Recommended: "PHP Video Tutorial"

WordPress There is a DoS denial of service vulnerability, it is recommended to delete xmlrpc.php in the root directory

Affected version:

WordPress 3.9.x-3.9.1
WordPress 3.8.x-3.8.3
WordPress 3.7.x-3.7.3
WordPress 3.6.x
WordPress 3.5.x
Copy after login

Vulnerability description:

There is no limit on the number of parameters in xml, As a result, attackers can remotely inject malicious XML, directly causing a denial of service attack on the target server. );

2. Upgrade WordPress to the latest version.

The above is the detailed content of Why should xmlrpc.php be deleted?. For more information, please follow other related articles on the PHP Chinese website!

Related labels:
source:php.cn
Statement of this Website
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn
Popular Tutorials
More>
Latest Downloads
More>
Web Effects
Website Source Code
Website Materials
Front End Template