[wp-trac] [WordPress Trac] #52457: WordPress vulnerable to search-reflected webspam

WordPress Trac noreply at wordpress.org
Mon Feb 8 15:40:34 UTC 2021


#52457: WordPress vulnerable to search-reflected webspam
-------------------------+---------------------
 Reporter:  abagtcs      |       Owner:  (none)
     Type:  enhancement  |      Status:  new
 Priority:  normal       |   Milestone:  5.7
Component:  General      |     Version:
 Severity:  normal       |  Resolution:
 Keywords:               |     Focuses:
-------------------------+---------------------

Comment (by burtrw):

 I've seen this a lot recently too and had a few customer complaints who
 thought they had been hacked. I'd be all for core behavior to not index
 ?s= search result pages. Would the additional option under Settings >
 Reading be necessary? Maybe if you really wanted search pages to be
 indexed, that could be left up to plugins?

-- 
Ticket URL: <https://core.trac.wordpress.org/ticket/52457#comment:4>
WordPress Trac <https://core.trac.wordpress.org/>
WordPress publishing platform


More information about the wp-trac mailing list