Simple Disable XML-RPC | Reduce Brute Force & DDOS Attacks
Simply disable XML-RPC on your WordPress site with a simple toggle switch. Protect your site from XML-RPC attacks and improve security.
5(5 reviews)
·1.0K+ active installs·Updated 4 months agoAs of April 2026, Simple Disable XML-RPC is a WordPress xml plugin with 1.0K+ active installations and a 5/5 rating from 5 reviews. It has been downloaded 8.8K+ times in total. Requires WordPress 6.1+ and PHP 7.4+. Available on WordPress.org since 2023. Download volume is stable this week. Top alternative: XML Sitemap & Google News.
5/55 reviews
1.0K+active installs
8.8K+total downloads
3 yearssince 2023
Overview
Simple Disable XML-RPC is a lightweight, powerful WordPress plugin that gives you complete control over your site’s XML-RPC functionality. Protect your WordPress site from brute force attacks, DDoS attempts, and other XML-RPC security vulnerabilities with just one click.
🔒 Why Disable XML-RPC?
XML-RPC is a remote communication protocol that allows external applications to interact with your WordPress site. While useful for some services, it’s frequently exploited by attackers for:
- Brute Force Attacks – Automated password guessing attempts
- DDoS Attacks – Overwhelming your server with requests
- Resource Exhaustion – Slowing down your website
- Pingback Vulnerabilities – Exploiting pingback features
✨ Key Features
- 🎯 One-Click Control – Modern toggl…
Screenshots
Ratings & Reviews
55 reviews
5 ★
5
4 ★
0
3 ★
0
2 ★
0
1 ★
0
Recent Reviews
Simple, Lightweight & Effective
by Raihan·9 months ago
I always recommend this plugin for quickly disabling XML-RPC and boosting WordPress security. No config needed—just activate and done. Appreciate the effort!
Very easy and ready to use
by Riad Mahmud·9 months ago·1 reply
It’s one of my go to plugin to make extra security layer. Thanks for this great plugin buddy.
Beautiful and easy plugin
by Ashim Mollick·1 year ago·1 reply
Beautiful and easy plugin
Plugin results
by Shamim Ahamed·2 years ago·1 reply
I have install the plugin and it works fine. I highly recommend for try it out this must needed plugin. to disable XML-RPC and it’s very easy to us.
- This topic was modified 2 years, 3 months ago by Shamim Ahamed.
Excellent Solution
by jimk111·2 years ago·1 reply
Simple is certainly appropriate for this very straightforward plugin “Simple Disable” – To improve our security I now have it installed on all my client websites hosted on Hostinger – (Jim, Neat Websites)
Download Trends
Today: 7Yesterday: 7This week: 57Period total: 6K
Compatibility
| WordPress | 6.1+ requiredTested up to 6.8.5 |
| PHP | 7.4+ required |
Version Adoption
v1.4
77.3%
v1.3
22.7%
Top Alternatives to Simple Disable XML-RPC | Reduce Brute…
Frequently Asked Questions
Changelog
1.4.0 (2025-11-09)
Major Update – UI Overhaul & Security Enhancements
- 🎨 NEW: Modern toggle switch interface replacing checkboxes
- 🎨 NEW: Beautiful card-based admin design
- 🔒 IMPROVED: Enhanced security with proper sanitization callbacks
- 🔒 IMPROVED: Added X-Pingback header removal
- ⚡ IMPROVED: Better code organization with OOP structure
…and 7 more changes
Contributors
Plugin data sourced from WordPress.org. Analysis and metrics by PluginSift.