#49289 closed enhancement (duplicate)
Spam comments should not show html preview
Reported by: | casiepa | Owned by: | |
---|---|---|---|
Milestone: | Priority: | normal | |
Severity: | normal | Version: | 5.4 |
Component: | Comments | Keywords: | reporter-feedback |
Focuses: | Cc: |
Description
When hovering over a url to an HTML page in a comment that is in spam (/wp-admin/edit-comments.php?comment_status=spam), the HTML page is trying to be loaded.
I'm not sure it's a good idea to provide extra hits to a page that is probably from a spammer.
Proposal: block all <a> inside td.author and td.comment
Change History (2)
Note: See
TracTickets for help on using
tickets.
Could it be that you're using Akismet? It adds a preview image of the site next to the URLs. I'm not aware of a "HTML preview" in core by default.