This helps prevent your site from being hacked through third-party plugin vulnerabilities. Learn more in our Keeping Servers and Sites Secure doc.
It’s also possible to enable specific Nginx security features from the SpinupWP site dashboard.
- “Disallow PHP execution in the uploads folder” – helps prevent your site from being hacked through third-party plugin vulnerabilities.
- “Disable XML-RPC” – disables XML-RPC support, which was an interface for other platforms to communicate with WordPress, but is now replaced by the WP REST API and can be a security concern.
