urls - Wordpress get parameter 'unapproved' and 'moderation-hash'

admin管理员组

文章数量:1294176

I have a blog site. And I found a suspicious access to my blog post from log. The url format is like this.

/?unapproved=420&moderation-hash=847492149d817bf7e08d81457bf9952f

And they access from several ips. What is their purpose?

I have a blog site. And I found a suspicious access to my blog post from log. The url format is like this.

https://example/my-post/?unapproved=420&moderation-hash=847492149d817bf7e08d81457bf9952f

And they access from several ips. What is their purpose?

• urls
• site-url
• parameter

Share Improve this question asked May 22, 2020 at 19:18 devcrazydevcrazy 10111 bronze badge 1

• 2 It could be an attempt at spamming: see this Trac ticket. – Pat J Commented May 22, 2020 at 19:32

Add a comment  | 

2 Answers 2

Sorted by: Reset to default 1

Spammers use the URL of unapproved comments to share around the Internet. This makes the comments viewable until the comment is dealt with via approval process.

WordPress' contributors are working on a patch for the next version. https://core.trac.wordpress/ticket/49956

<?php
    $url = $_SERVER['REQUEST_URI'];
    if (strpos($url,'/?') !== false) {
        echo '<meta name="robots" content="noindex, nofollow" />' . "\n";
    }
?>

This is one of the solutions, you can hide pages with GET parameters from the search. Just add it to the header.php file

本文标签： urlsWordpress get parameter 39unapproved39 and 39moderationhash39