Login to your Cloudflare account then go to the domain settings >> Rules >>Page Rules
This page rule is only for a bot or someone who's trying to access the wp-login.php file and not the rest of your site.
You can also add same rules for 2 other pages "wp-admin.php" and "xmlrpc.php" vulnerable to attack
This page rule is only for a bot or someone who's trying to access the wp-login.php file and not the rest of your site.
- URL Matches: *yourdomain.com/wp-login.php*
- First Setting: Browser Integrity Check – On
- Second Setting: Security level – I'm under attack.
You can also add same rules for 2 other pages "wp-admin.php" and "xmlrpc.php" vulnerable to attack
- URL Matches: *yourdomain.com/wp-admin.php*
- First Setting: Browser Integrity Check – On
- Second Setting: Security level – I'm under attack.
- URL Matches: *yourdomain.com/xmlrpc.php*
- First Setting: Browser Integrity Check – On
- Second Setting: Security level – I'm under attack.