Ajouter dans le .htaccess à la racine du wordpress le code suivant (nettoyer cache navigateur)

<IfModule mod_rewrite.c>
    RewriteEngine On
    RewriteCond %{HTTPS} off          [OR]
    RewriteCond %{HTTP_HOST} ^www\.   [NC]
    RewriteRule ^ https://desclicks.net%{REQUEST_URI} [R=301,L,NE]
</IfModule>

Masquer les erreurs de login (à refaire maj ?) functions.php

add_filter('login_errors', create_function('$no_login_error', " return 'Mauvais identifiants'; ")); 

Désactiver modif code wp-config.php

define(‘DISALLOW_FILE_EDIT’,true);

wp-config.php

define( 'WP_AUTO_UPDATE_CORE', true);

wp-config.php

define('WP_CONTENT_DIR', dirname(__FILE__) . '/repertoire-site/repertoire-content');

https://wpformation.com/11-rappels-securite-wordpress/ https://www.fabricecourt.com/formation/securiser-efficacement-son-site-wordpress/ https://wpchannel.com/wordpress/tutoriels-wordpress/14-astuces-securiser-site-wordpress/ https://www.malekal.com/securiser-wordpress/ https://codex.wordpress.org/Hardening_WordPress