I made a website a while ago, looks good to me. It's host is 000webhosting.com but I'm worried about attacks being targeted on my site. How do I protect myself from XSS, RFI, LFI and SQLI? I use FTP and my site doesn't have a custom domain name. Thanks.