PHP and WordPress version disclosure scan

The scan

This scan checks if your site reveals your WordPress as well as your server's PHP version number.

The fix

SecuPress will delete any reference to the version number of your WordPress installation throughout the source code of your site, and will forbid access to the  readme.html file. SecuPress will also delete the header revealing the server's PHP version number.

What if the fix doesn't work ?

For Apache servers : the .htaccess file is probably not writeable. Access your site via FTP and open up the .htaccess file. Add in the lines provided by SecuPress in the error message. 

For IIS7 servers : the web.config file is probably not writeable. Access your site via FTP and open up the web.config file. Add in the lines provided by SecuPress in the error message. 

For nginx servers : SecuPress can't access the nginx.conf file. Access your site via FTP and open up the nginx.conf file. Add in the lines provided by SecuPress in the error message. 

Some server configurations like php-farm/Apache/FastCGI may also prevent editing headers via the .htaccess file. In this case, more complex steps are required, and you need to use a php.ini file. It's best to get in touch with our support team before doing so.