• Germán

    (@germanoronoz)


    Hello,

    Files that are autouploaded to wp-content/wp-offload-ses/ folder are publicly accessible by URL.

    We use wp_mail for receiving CVs, sending PDF proposals… This is very sensitive information.

    Is it possible to make this folder not accessible by URL?

    Thanks a lot in advance!

Viewing 1 replies (of 1 total)
  • Hi @germanoronoz,

    You may test adding an .htaccess file to that directory with the content:
    Deny from all

    .htaccess file is uploaded as htaccess text file and renamed to have the dot at its beginning.

Viewing 1 replies (of 1 total)
  • The topic ‘Prevent URL access to wp-content/wp-offload-ses/’ is closed to new replies.