Most WordPress installations are hosted on the popular Apache web server. Apache uses a file named .htaccess to define the access rules for your web site. A thorough set of rules can prevent many types of SQL Injection from being interpreted. Inserting the rules into the web site’s .htaccess file will strip URL requests of SQL injections.
Â
Resources: