Disable XML-RPC via snippet

From the xmlrpc_enabled filter docs:

Contrary to the way it’s named, this filter does not control whether XML-RPC is fully enabled, rather, it only controls whether XML-RPC methods requiring authentication – such as for publishing purposes – are enabled.

To fully disable XMLRPC, you might be able to use the xmlrpc_methods filter and return an empty array:

add_filter( 'xmlrpc_methods', 'wpse416991_disable_xmlrpc' ); 
/**
 * Disables XMLRPC methods.
 *
 * @param  array $methods The XMLRPC methods.
 * @return array          An empty array to disable all methods.
 */
function wpse416991_disable_xmlrpc( $methods ) {
    return array();
}

Per @birgire’s comment, you could further simplify this using __return_empty_array():

add_filter( 'xmlrpc_methods', '__return_empty_array' );

If that doesn’t work, you can block access to the XMLRPC file in your .htaccess file (though that’s outside of the WordPress scope):

<Files "xmlrpc.php">
    Require all denied
</Files>

Related Posts:

  1. How do I comment out a block of tags in XML?
  2. What does
  3. How to use XPath contains() here?
  4. Looking for a clear description of Excel’s .xlsx XML format
  5. Parse XML using JavaScript [duplicate]
  6. (Python) AttributeError: ‘NoneType’ object has no attribute ‘text’
  7. XSLT-FO for-each
  8. java.net.MalformedURLException: no protocol
  9. Meaning of –
  10. XSLT for each loop on simple XML
  11. Is XML a programming language?
  12. XML Parsing Error: not well-formed
  13. XPath: Get parent node from child node
  14. What is the difference between Inclusive and Exclusive OR?
  15. Manifest Merger failed with multiple errors in Android Studio
  16. xmlns, xmlns:xsi, xsi:schemaLocation, and targetNamespace?
  17. How can I escape “&” in XML?
  18. How to fix error: The markup in the document following the root element must be well-formed
  19. What’s “tools:context” in Android layout files?
  20. How to add a newline (line break) in XML file?
  21. Error -1072896636 “DTD Prohibited” when opening xml file in Excel, what do I do?
  22. How to define xsi:type as an attribute in XML-schema?
  23. What are invalid characters in XML
  24. How to implement if-else statement in XSLT?
  25. The ‘packages’ element is not declared
  26. Getting attribute using XPath
  27. understanding position() function in XSLT
  28. android.support.design.widget.CoordinatorLayout error
  29. How to parse XML in Bash?
  30. YAML compared to XML
  31. URI is not registered (Settings | Languages & Frameworks | Schemas and DTDs) in applicationContext.xml
  32. Import WordPress xml file larger than 8mb
  33. parse XML from URL (via SOAP)
  34. How can I bulk update all posts without making changes?
  35. Problems with creating hook that updates XML
  36. Features in Houzez are not loading in Backend from API
  37. How to block XML-RPC attack?
  38. WP All Import: Feeds of Feeds [closed]
  39. Is there an XML Web Service that can get posts, categories and other data from the site?
  40. Receive error exception using xampp with wordpress
  41. Work with xml file and WordPress
  42. Moving WordPress to a different directory – update XML Post File?
  43. WordPress importer / problem with images
  44. I need a standalone script in web root but still have access to the database
  45. How to process shortcodes in XML-RPC
  46. stop duplicate post
  47. Importing feeds with PHP
  48. Create XML sitemap in wordpress
  49. How to make an xml file (just the xml file) available at a specific url?
  50. problem of path with xml file
  51. xml generator script wordpress [closed]
  52. How to parse XML and count instances of a particular node attribute?
  53. ImageView in circular through XML
  54. javax.xml.bind.UnmarshalException: unexpected element (uri:””, local:”Group”)
  55. org.xml.sax.SAXParseException: Content is not allowed in prolog
  56. Fatal Error: Allowed Memory Size of 134217728 Bytes Exhausted (CodeIgniter + XML-RPC)
  57. Cannot resolve symbol ‘button’ -Android Studio
  58. How do I escape ampersands in XML so they are rendered as entities in HTML?
  59. XML schema error – root element of a w3c xml schema
  60. XML has empty body?
  61. SSO / authentication integration with external ‘directory service’
  62. WordPress as XML-RPC client?
  63. custom XMLRPC method plus authentication of user & WooCommerce order
  64. wp.getUsersBlogs XMLRPC Brute Force Attack/Vulnerability
  65. How to read the xml file in wordpress?
  66. How do you get all the urls of images attached to a post?
  67. Importing WordPress Attachments Into Custom Directories In wp-content/uploads/
  68. What server settings are required to import WordPress XML file
  69. wp.getUsers XML-RPC method is returning only 50 users, how can i get all the users
  70. How to duplicate a curl XML request using HTTP API?
  71. Problem with Create Post using metaWeblog.newPost or wp_insert_post
  72. How pull wordpress blog data using Blogger API using python
  73. Help Me Choose RSS or XML-RPC
  74. How to limit the content coming from wordpress shortcodes?
  75. Output and filter data from a XML url
  76. How to make a XML/PHP file returning custom field data from page
  77. XML-code sent via the POST method to the URL (API) [closed]
  78. Can XMLRPC set show_on_front/page_on_front?
  79. Multisite -> XMLRPC
  80. Remotely search WordPress sites using xml-rpc
  81. Query posts and return XML
  82. Can I Remove xmlrpc.php completely?
  83. wp.getComments is returning nill, when i called from my iphone app [closed]
  84. wp_get_attachment_url images in wrong order [closed]
  85. Create a page by importing data from an XML file ( On clicking a button inside admin options page)
  86. How to assign name the WordPress export.xml file
  87. Queries take 120+ seconds on my large WordPress site
  88. WP Import All Multiple Dynamic Link Imports
  89. Wodpress XML Import hooks
  90. XMLRPC pingback.extensions.getPingbacks not work with parameters
  91. not well-formed (invalid token) at line 15, column 51, byte 720 when trying to parse XMLRPC call
  92. Why none of xmlrpc filters work
  93. Insert custom post type via XML-RPC?
  94. Manage multiple wordpress installs (Best Practice)
  95. Weblog clients cannot retrieve posts: An invalid hexadecimal character (0x7) was found in the element content of the document
  96. Custom xmlrpc request does not pass parameters?
  97. Modifying WordPress XML-RPC Built-Ins
  98. Convert javascript running xml files to wordpress platform
  99. When importing posts to a new site if XML file has postmeta not setup on new server what happens?
  100. Create a “feed” from one WordPress site to another?
techhipbettruvabetnorabahisbahis forumutaraftarium24edusedueduedueduedusedueduseduedu