Are XML-RPC attacks dangerous in WordPress?