Disable XML-RPC Pingback

€0

Stops abuse of your site’s XML-RPC by simply removing some methods used by attackers. While you can use the rest of XML-RPC methods. This is more friendly than disabling totally XML-R

Version	1.2.2
Last updated	2021.05.30
Active installations	70000
WordPress Version	4.8
Tested up to	5.7.9
PHP Version	5.6
pa_languages	Arabic,,Dutch,,English,(South,Africa),,English,(UK),,English,(US),,Galician,,Hungarian,,Japanese,,Russian,,Spanish,(Argentina),,Spanish,(Mexico),,Spanish,(Spain),,Spanish,(Venezuela),,Swedish,,Ukrainian
Rating	4.00
Total ratings	14
Tag	ddospingbackrpcxmlxml-rpc

This plugin is outdated and might not be supported anymore.

Go back

View on WordPress site

Description

Stops abuse of your site’s XML-RPC by simply removing some methods used by attackers. While you can use the rest of XML-RPC methods.

This is more friendly than disabling totally XML-RPC, that it’s needed by some plugins and apps (I.e. Mobile apps or some Jetpack’s modules).

The original one.
Simple and effective.
No marketing buzz.
Maintained and updated when needed since 2014.
100% compliant with WordPress coding standards which makes it fail safe.
70,000+ active installations can’t be wrong.

If you’re happy with the plugin please don’t forget to give it a good rating, it will motivate me to keep sharing and improving this plugin (and others).

Features

Removes the following methods from XML-RPC interface.

pingback.ping
pingback.extensions.getPingbacks
X-Pingback from HTTP headers. This will hopefully stops some bots from trying to hit your xmlrpc.php file.

Requirements

WordPress 3.8.1 or higher.