Home WordPress Developer WordPress Snippets How to protect WordPress against malicious URL requests

WP Dynamic - WordPress

How to protect WordPress against malicious URL requests

Published 24.04.2012 by WP Dynamic

Last modified 14.11.2019

This snippet is great for security to protect your WordPress site against malicious URL requests.

Instructions
Add this to your functions.php file.

global $user_ID; if($user_ID) {
	if(!current_user_can('administrator')) {
		if (strlen($_SERVER['REQUEST_URI']) > 255 ||
			stripos($_SERVER['REQUEST_URI'], "eval(") ||
			stripos($_SERVER['REQUEST_URI'], "CONCAT") ||
			stripos($_SERVER['REQUEST_URI'], "UNION+SELECT") ||
			stripos($_SERVER['REQUEST_URI'], "base64")) {
				@header("HTTP/1.1 414 Request-URI Too Long");
				@header("Status: 414 Request-URI Too Long");
				@header("Connection: Close");
				@exit;
		}
	}
}

WordPress Snippet Info

Tested with Wordpress v. NA

How to protect WordPress against malicious URL requests

4.1 (82.86%) 7 vote[s]

Please report broken snippets.

Report Broken Snippet

Show most popular WordPress posts without a plugin

Allow WordPress contributors to upload images

How to remove the WordPress author prefix from slug

How to remove the WordPress author prefix from slug

How to protect WordPress against malicious URL requests

Leave a Reply Cancel reply

WordPress Snippet Info

Recent Comments

WordPress Code Snippets

How to exclude current WordPress post from WP Query

How to show the current time in local language in WordPress

How to restrict WordPress media library access to user’s own uploads

How to show WordPress featured image caption without a plugin

Display Total Number of WordPress Posts for Custom Post Type

How to use WordPress shortcodes in themes-/templates

WordPress Plugins

WordPress Tutorials

Latest Content

How to exclude current WordPress post from WP Query

How to show the current time in local language in WordPress

How to restrict WordPress media library access to user’s own uploads

How to show WordPress featured image caption without a plugin

Display Total Number of WordPress Posts for Custom Post Type

How to use WordPress shortcodes in themes-/templates

Most Read

How to exclude current WordPress post from WP Query

How to show the current time in local language in WordPress

How to remove the WordPress author prefix from slug

How to display WordPress “site name” and “description” in templates

How to show WordPress featured image caption without a plugin

How to restrict WordPress media library access to user’s own uploads

Editors recommended

Your IP: 2a03:b0c0:3:d0::1b42:f001

How to protect WordPress against malicious URL requests

Leave a Reply Cancel reply

Related articles.

How to restrict WordPress media library access to user’s own uploads

How to remove the WordPress author prefix from slug

How to redirect a WordPress user after login

How to show number of WordPress queries and page load time

How to restrict user access to WordPress templates

How to Change WordPress author URL-/slug base

WordPress Snippet Info

Recent Comments

Show most popular WordPress posts without a plugin

Allow WordPress contributors to upload images

How to remove the WordPress author prefix from slug

How to remove the WordPress author prefix from slug

WordPress Code Snippets

How to exclude current WordPress post from WP Query

How to show the current time in local language in WordPress

How to restrict WordPress media library access to user’s own uploads

How to show WordPress featured image caption without a plugin

Display Total Number of WordPress Posts for Custom Post Type

How to use WordPress shortcodes in themes-/templates

WordPress Plugins

WordPress Tutorials

Latest Content

How to exclude current WordPress post from WP Query

How to show the current time in local language in WordPress

How to restrict WordPress media library access to user’s own uploads

How to show WordPress featured image caption without a plugin

Display Total Number of WordPress Posts for Custom Post Type

How to use WordPress shortcodes in themes-/templates

Most Read

How to exclude current WordPress post from WP Query

How to show the current time in local language in WordPress

How to remove the WordPress author prefix from slug

How to display WordPress “site name” and “description” in templates

How to show WordPress featured image caption without a plugin

How to restrict WordPress media library access to user’s own uploads

Editors recommended