Having some directories writeable by default makes your site vulnerable to hacker attacks. Hackers can use the function to upload backdoor access files or malware to your website. It is of vital importance that you understand what you are doing before you go on to disable any PHP execution. Doing that will make sure that any PHP file will not run in those particular directories.
However, if you need to disable PHP execution for a particular directory, you will need to create the .htaccess file.
Step::1 Login to your cPanel and click on File Manager section
Step::2 Here go inside public_html and open the directory where you want to disable PHP execution
Step::3 Once you are inside that directory, click on the + File icon at the to left corner of the screen.
Step::4 Create a .htaccess file (You can ignore this step if .htaccess file is already present in the directory)
Step::5 Now right click over the htaccess file and choose the Edit option
Step::6 Next you are going to see a pop-up. Click Edit and a new tab will open
Step::7 Add the code given below
<Files *.php> Order deny,Allow Deny from all </Files>
Step::8 Click on Save Changes tab.