mitigation
I agree wordpress is the pits of all software, however im lazy so i use it. anyway i just added this to the nginx frontend to help deal with yet another security issue
location ~ ^/(wp-config|wp-settings|xmlrpc\.php) {
deny all; }
1 publicly visible post • joined 20 Oct 2015