I’m a bit confused, I don’t have the Execute PHP on the Hooks and want to install a bit of php code – to remove the hooks from a page – but reading the support info it is a security hole to have the hooks enabled ?
Sorry for being a bit think i’m just a bit confused.
I wouldn’t say it’s a security hole, but allowing any sort of PHP execution in the Dashboard can be a bad thing IF someone bad gained access to your admin account. This applies to the theme and plugin editors in WP core as well.
If you make it hard for someone to login as the admin (2FA, strong password etc..), then I wouldn’t worry about it.