DISALLOW_FILE_EDIT
WordPress constant that disables the built-in theme and plugin file editors in the admin dashboard.
How it works
WordPress constant that disables the built-in theme and plugin file editors in the admin dashboard.
In WordPress
Setting DISALLOW_FILE_EDIT to true prevents attackers with admin access from injecting code via the editor.
Related terms
WP HealthKit checks for DISALLOW_FILE_EDIT-related vulnerabilities automatically
Run a Free Audit