Stop WordPress Username Enumeration Vulnerability

You can patch the WordPress username enumeration vulnerability by adding the following lines of code to your site's .htaccess.

# Stop WordPress username enumeration vulnerability
RewriteCond %{REQUEST_URI}  ^/$
RewriteCond %{QUERY_STRING} ^/?author=([0-9]*)
RewriteRule ^(.*)$ http://yoursite.com/somepage/? [L,R=301]
  • 0 Users Found This Useful
Was this answer helpful?

Related Articles

Installing WordPress with Softaculous

Once logged into your DirectAdmin control panel, please navigate to Softaculous Auto Installer...

Accessing Your WordPress Dashboard

The URL for your WordPress Dashboard, by default, is example.com/wp-admin or...

How to Update to the Latest Version of PHP in DirectAdmin

You can change the PHP Version on your sites at any time by logging in to your DirectAdmin...

Changing Your WordPress Dashboard Admin Password

In order to change your WordPress dashboard password, you will need to log into your DirectAdmin...

What to do When Your Site Loads Blank

If your Wordpress site or Dashboard loads to an all-white screen, or you receive an Internal...