Por padrão, o WordPress permite determinadas tags HTML nos comentários, como <a> <em> <strong> etc. Se você perceber, muitos comentários de SPAM também contêm essas tags. A maioria dos comentários de SPAM é feita por bots e scripts, que usam tags HTML. Se você simplesmente desativar o HTML dos comentários do WordPress, poderá evitar muitos SPAMs. Neste tutorial, mostraremos como você pode desativar as tags HTML nos comentários do WordPress.
Este tutorial desabilitará apenas as tags HTML ativas. Portanto, alguém ainda pode postar algo como:
<a><em><strong>
E ele aparecerá, mas as tags não estarão funcionando. Portanto, se alguém usar a tag strong, o texto não ficará em negrito. Além disso, poucos bots de SPAM têm tempo para fazer isso, pois esse método consome muito tempo e não é benéfico para eles.
Tudo o que você precisa fazer é simplesmente abrir seu functions.php e adicionar o seguinte código:
// This will occur when the comment is posted
function plc_comment_post( $incoming_comment ) {
// convert everything in a comment to display literally
$incoming_comment['comment_content'] = htmlspecialchars($incoming_comment['comment_content']);
// the one exception is single quotes, which cannot be #039; because WordPress marks it as spam
$incoming_comment['comment_content'] = str_replace( "'", ''', $incoming_comment['comment_content'] );
return( $incoming_comment );
}
// This will occur before a comment is displayed
function plc_comment_display( $comment_to_display ) {
// Put the single quotes back in
$comment_to_display = str_replace( ''', "'", $comment_to_display );
return $comment_to_display;
}
Se você não quiser adicionar esse código manualmente, o autor original também oferece um plug-in que pode ser baixado. Basta instalar e ativar o plug-in Peter’s Literal Comments.
O motivo pelo qual esse método é melhor é que ele não exige que você altere os arquivos principais. Se quiser editar os arquivos principais, você pode ir para wp-includes/kses.php e editar os códigos lá. (Isso não é recomendado, mas está aqui para fins de conhecimento.(WP Codex para obter mais detalhes)
Syed Balkhi says
Hey WPBeginner readers,
Did you know you can win exciting prizes by commenting on WPBeginner?
Every month, our top blog commenters will win HUGE rewards, including premium WordPress plugin licenses and cash prizes.
You can get more details about the contest from here.
Start sharing your thoughts below to stand a chance to win!
Gwyneth Llewelyn says
Unfortunately, the Peter’s Literal Comments plugin is not active any longer; it has been updated last in 2015, and may not even work on recent versions any more. You might need to recommend a different plugin instead…
WPBeginner Support says
Thank you for letting us know that the plugin is not active a the moment. When we look at updating the article we will look for an alternative
Administrador
KM Shariful says
What html codes I can use in comment box of wordpress site as a visitor?
WPBeginner Support says
Hi,
You can use the following HTML tags in comments by default.
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>Administrador
San Solanki says
Very well written article, i always follow your blog for all my wordpress problems thnks
Ekesmall says
Is not working here………anyway round??
Sandile Nxumalo says
After all these years, this still works. Thanks
carlo says
Dude, you forgot the closing tag }
WPBeginner Support says
Thanks for pointing out, we have fixed the code snippet.
Administrador
anshu says
there are lots of commnts on my every blog post … how to disable HTML hyperlink so that i can prevent my blog post from spam
falvarez says
I think that something is missing. You should add your function plc_comment_display() to the filter stack like this:
add_filter(‘comment_text’, ‘plc_comment_display’);
Regards.
johnroypaul says
Brilliant article thanks! Seems to work perfectly well with the latest versions of wordpress as well (3.3) Made the code a lot cleaner as mentioned and seems to have made life easier when trying to implement the comments form into side areas ect. (Had a nightmare with previous use of the normal code)
wordpress hosting says
The more mature you are, the harder at risk you are for getting something undesirable happen to you while overseas. Thanks for revealing your suggestions on this blog.You have good grapes on wordpress thanks for making my problem so easy .
Kamal says
Great, by this way one can ensure that nobody drops links in the comment box. I really hate to see people doing that unnecessarily.
shoaib hussain says
Nice piece of code,but if you happen to use thesis like I am,only needs to check a radio button and the html code vanishes.
Editorial Staff says
Yes you are right, but we are not supporting Thesis on this site because it is not compatible with the GPL License.
Administrador
Cruz3N says
Its confused me Bro, but i make some simple plugin that allow you to replace with > ;
<?php
/*
Plugin Name: Filter Comments
Plugin URI: http://cruzenaldo.com/plugin-sederhana-filter-komentar/
Description: Plugin sederhana untuk melakukan filterisasi terhadap komentar dan mencegah user menginput tag – tag HTML
Author: Cruz3N
Author URI: http://www.cruzenaldo.com/
Version: 1.0
*/
function my_function ($text) {
$text = str_replace('’, ‘> ;’, $text);
return $text;
}
add_filter(‘comment_text’, ‘my_function’);
?>
You can modification that better… Hope usefull
Download here
http://www.box.net/shared/rgb4lmt5uy
And this is my ugly blog :p
http://cruzenaldo.com/
Best Regard
Cruz3N
Infographiste says
Thank you for the useful tuto and easy to follow. I’ve found another one explaining how to disable HTML but was to hard and badly explained, anyway thanks again and have a great week end
michelle says
this great and should help to block out loads of spam
thanks
Blogger Pemula says
Thanks for the Great Tips.
Is it affecting commentluv plugin?
Editorial Staff says
Haven’t tried yet, but don’t think it should.
Administrador
Ms. Freeman says
This will be of great help from those spam bots that try to leave comments with twenty or so links…LOL:) Thanks
Jad Limcaco says
Thanks! Didn’t know how to do this before.