Prevent XMLRPC wordpress plugin resources analysis
| Download This Plugin | |
| Download Elegant Themes | |
| Name | Prevent XMLRPC |
| Version | 1.0 |
| Author | Nathan Briggs |
| Rating | 74 |
| Last updated | 2012-12-21 11:50:00 |
| Downloads |
3502
|
| Download Plugins Speed Test plugin for Wordpress | |
Home page
Delta: 0%
Post page
Delta: 0%
Home page PageSpeed score has been degraded by 0%, while Post page PageSpeed score has been degraded by 0%
Prevent XMLRPC plugin added 14 bytes of resources to the Home page and 27 bytes of resources to the sample Post page.
Prevent XMLRPC plugin added 0 new host(s) to the Home page and 0 new host(s) to the sample Post page.
Great! Prevent XMLRPC plugin ads no tables to your Wordpress blog database.There's a vulnerability in WordPress's XMLRPC implementation, that permits trackback spam - even when you disable trackbacks.
The only way to prevent this spam is to disable XMLRPC entirely. Some people have suggested renaming or deleting the xmlrpc.php file, but this is not a good idea, because it's altering core code and not trivial for novice users to undo.
This plugin completely disables WordPress's XMLRPC functions, and doesn't alter or rename any core files. You can enable XMLRPC again by simply disabling this plugin.
See http://www.acunetix.com/blog/web-security-zone/wordpress-pingback-vulnerability/ for detailed information about the vulnerability in WordPress's XMLRPC handler.
