Prevent access from add-on domain root to other folders

Hi there, I've been trying to figure out if add-on domains can be prevented from accessing folders outside its specified root folder. I had one of my add on domain websites hacked and then I found suspicious files all over the server everywhere. I found