How to Secure Your Wordpress Website

[{"selector":"#anim-6136dd3e-a6af-4cf1-bb15-db5a38260438 [data-leaf-element=\"true\"]","keyframes":{"transform":["translate3d(50.63281250683499%, 0, 0)","translate3d(0%, 0, 0)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"both"}] [{"selector":"#anim-cbeac193-9d80-4751-bb44-a1799797ddd6","keyframes":{"transform":["translate3d(121.87500%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-614e19df-6ef3-459b-91f4-668ec973fd06","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-70c7d8f7-088f-45fc-bab2-11188974afca","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}]

[{"selector":"#anim-50dcf9e4-bbf0-4d41-b373-8f74e2972a41","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-4d4ee607-aba1-4b78-944e-bedc3a351bcb","keyframes":{"transform":["translate3d(-100.30349%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-1ef8544b-703b-414f-a6ed-58b3f7e21478","keyframes":{"transform":["translate3d(-120.31746%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":1000,"easing":"cubic-bezier(.2, 0, .8, 1)","fill":"both"}] [{"selector":"#anim-a4a65cae-182e-4da9-9ea8-0788c8dbc0ae","keyframes":{"transform":["rotateZ(-180deg)","rotateZ(0deg)"]},"delay":0,"duration":1000,"easing":"cubic-bezier(.2, 0, .5, 1)","fill":"forwards"}] Do not pay attention to the security of WordPress's website until a problem occurs on your website, then before the problem occurs, you can strengthen the security of your website even more.

Friends, you have to fix 10 problems inside a WordPress website.

[{"selector":"#anim-413cf237-92e1-4eaa-800d-f7c887882cc6","keyframes":{"opacity":[0,1]},"delay":0,"duration":2000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"both"}] [{"selector":"#anim-497cac01-9d93-4827-a410-674be881f923","keyframes":{"transform":["scale(0.3333333333333333)","scale(1)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"forwards"}]

[{"selector":"#anim-811e5e38-5695-4419-bf71-f320eacd0a0b","keyframes":{"transform":["translate3d(-125.92592%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-470f5919-0c7c-47ca-8b00-ea8d1f4f23a0","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-500df649-7e12-41a7-b643-0dc3621ca82e","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] [{"selector":"#anim-a9e1305b-c935-4391-8e10-97064a4c8344","keyframes":{"transform":["translate3d(115.55555%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-ecebb369-5944-4a6e-9906-2bbae0efe26f","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-5f3a9b1f-f33b-41e5-b1b2-218dc91a8ffc","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] 1 – XML-RPC Issue, 2 – Directory Listing Issue, 3 – Internal Path Disclosure, 4 – Server Signature, 5 – SQL Injection , 6 – Clickjacking, 7 – WordPress Version, 8 – Login URL, 9 – Robot.txt Disclosure, 10 – 2FA Unavailability,

1 XML RPC Issue

[{"selector":"#anim-68b4c7f0-0d33-4f86-b4a2-54c77507676a","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-d24628fe-55dd-44aa-b826-a9fb766ccc22","keyframes":{"transform":["translate3d(122.69229%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-88f98836-4430-4883-9cf3-2256610bee48","keyframes":{"transform":["translate3d(-126.82927%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-827aa003-1fa1-4936-b688-127ba0232fc7","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-15a7cb26-e568-4452-85b8-34b0c10bbd25","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] Its full name is XML Remote Procedure Call, it is a way to establish Remote Connection from WordPress website, But through this DDos attack can be done on your WordPress website, so do not use WordPress app and turn off XML-RPC, 1 – First of all, you enter yourdomain.com/xmlrpc.php in the URL of your website and press Enter, 2 - If it is on then turn it off, 3 - To close, paste the code given below in the htaccess file, 4 - If you are using Rank Math Plugin then first click on rankmath and click on General Settings, and then click on edit htaccess

2 Web Directory Listing

[{"selector":"#anim-05483705-5939-4584-9161-b41435c5a692","keyframes":{"transform":["translate3d(117.32027%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-bfb55868-df88-46b6-9cc2-1f0f827215c6","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-0974d958-cbf7-49a5-991b-0419ef40423e","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}] [{"selector":"#anim-e94b87b4-6cb8-4aed-bd6e-33a9149c5146","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-f1040d0f-d96a-4a77-b5fc-f491d6ee4578","keyframes":{"transform":["translate3d(-115.60509%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] If your website has this problem or you say that if someone can see the files of your website, then your website is not secure, your website is Vulnerable, Solution – To solve this problem, you have to paste the following code in the htaccess file, Learn more

3 Internal Path Disclosure Inside it informs the attacker about the root structure of the server, if this information goes to the attacker, then not only your WordPress website but also damages the entire structure or server, Solution – To solve this, you have to enter the following code inside the htaccess file,

4 Server Signature Os and Server leaks information to your website in many ways like, Source Code, Header, Solution – To fix this, you have to enter the code given below in the htaccess file of your website,

[{"selector":"#anim-e005d7c8-e5b0-4c0b-b2fc-6509e36fb03f","keyframes":{"opacity":[1,1]},"delay":0,"duration":2000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"both"}] [{"selector":"#anim-e9c05252-96cb-4897-8097-b012fd40dc13","keyframes":{"transform":["scale(3)","scale(1)"]},"delay":0,"duration":2000,"easing":"cubic-bezier(.3,0,.55,1)","fill":"forwards"}] [{"selector":"#anim-7555d8ac-880a-4296-87be-f9c1ac0e6e0d","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}] [{"selector":"#anim-36d64af7-7ffb-4d08-ae65-2f43924c4ad8","keyframes":{"transform":["translate3d(-119.59459%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.2, 0.6, 0.0, 1)","fill":"both"}]

5 SQL Injection This is also a big risky for WordPress websites, you will know that the data of WordPress website is in SQL (Structure Query Language), Subscribe Now to your website can harm your website by using malicious code in Contact Form

[{"selector":"#anim-93af1da8-4d0d-4740-9357-eebe17c64658","keyframes":{"transform":["translate3d(-115.63519%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":1000,"easing":"cubic-bezier(.2, 0, .8, 1)","fill":"both"}] [{"selector":"#anim-f5d98d78-fcc2-46db-8a71-9067460c81fb","keyframes":{"transform":["rotateZ(-180deg)","rotateZ(0deg)"]},"delay":0,"duration":1000,"easing":"cubic-bezier(.2, 0, .5, 1)","fill":"forwards"}] [{"selector":"#anim-9bb2bcac-105a-4f86-b5c5-b1d555988b1c","keyframes":{"transform":["translate3d(-126.04166%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-1ee0b442-468d-49c0-bb28-685e9725cfbb","keyframes":{"opacity":[0,1]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"both"}] [{"selector":"#anim-490cb17e-7655-4d9d-8d17-8cf02451a0da","keyframes":{"transform":["scale(0.15)","scale(1)"]},"delay":0,"duration":600,"easing":"cubic-bezier(0.4, 0.4, 0.0, 1)","fill":"forwards"}]

5 SQL Injection

Solution – Using Security Plugin, (wordfence) Update Themes, Plugins, WordPress, update php, Do not use Nulled Plugin, Themes, Use Firewall, Keep a backup of the site.

6 – Clickjacking, 7 – WordPress Version, 8 – Login URL, 9 – Robot.txt Disclosure, 10 – 2FA Unavailability,

[{"selector":"#anim-02eddec8-ebb6-4b33-8a19-a1cc50e72768","keyframes":{"transform":["translate3d(115.55555%, 0px, 0)","translate3d(0px, 0px, 0)"]},"delay":0,"duration":1000,"easing":"cubic-bezier(.2, 0, .8, 1)","fill":"both"}] [{"selector":"#anim-89697efe-49e9-4e4c-8fc6-202ce8f5bbb4","keyframes":{"transform":["rotateZ(180deg)","rotateZ(0deg)"]},"delay":0,"duration":1000,"easing":"cubic-bezier(.2, 0, .5, 1)","fill":"forwards"}] Learn more