diff --git a/root/usr/share/container-scripts/php/httpd-cnf/99-wordpress-security.conf b/root/usr/share/container-scripts/php/httpd-cnf/99-wordpress-security.conf
index d93cb0e11593a99ec9f6fa4427e4110f4f5c7acb..416f6f0cf376929159a4b13402b8cf0e5de6aacc 100644
--- a/root/usr/share/container-scripts/php/httpd-cnf/99-wordpress-security.conf
+++ b/root/usr/share/container-scripts/php/httpd-cnf/99-wordpress-security.conf
@@ -19,3 +19,14 @@
     deny from all
 </Files>
 
+#Limit type of files that are served from wp-content
+<Directory "/opt/app-root/src/wp-content">
+    <FilesMatch "\.(php|html|htm|css|js|jpg|jpeg|png|gif|ico|svg|woff|woff2|ttf|eot|otf|pdf|doc|docx|xls|xlsx|ppt|pptx)$">
+        SetHandler default-handler
+    </FilesMatch>
+
+    <FilesMatch ".*">
+        Require all denied
+    </FilesMatch>
+</Directory>
+