I had this issue in the past and you helped me to solve it by adding a code to my .
htaccess file (`
Block access to wp-admin. order deny,allow allow from x.x.x.x deny from all #
Allow access to wp-admin/admin-ajax.php
AuthGroupFile /dev/null. AuthType basic. require user putyourusernamehere. < Files admin-ajax.php>. Order allow,deny. Allow from all.
php, how would a hacker even get into the dashboard anyways?
I get 404's sometimes on wp-admin/admin-ajax.php while this file exists.
You'll read that admin-ajax.php lives in /wp-admin/ .
The trouble with doing this is that you break ALL ajax in WordPress for
By configuring a whitelisted admin-ajax.php file you can add an additional