fbpx
How to Protect WordPress Against Malicious URL Requests

How to Protect WordPress Against Malicious URL Requests

This snippet is great for security to protect your WordPress site against malicious URL requests.

Instructions
Add this to your functions.php file.

global $user_ID; if($user_ID) {
	if(!current_user_can('administrator')) {
		if (strlen($_SERVER['REQUEST_URI']) > 255 ||
			stripos($_SERVER['REQUEST_URI'], "eval(") ||
			stripos($_SERVER['REQUEST_URI'], "CONCAT") ||
			stripos($_SERVER['REQUEST_URI'], "UNION+SELECT") ||
			stripos($_SERVER['REQUEST_URI'], "base64")) {
				@header("HTTP/1.1 414 Request-URI Too Long");
				@header("Status: 414 Request-URI Too Long");
				@header("Connection: Close");
				@exit;
		}
	}
}

WordPress Snippet Info

Tested with Wordpress v. NA

How to Protect WordPress Against Malicious URL Requests
4.3 (85%) 8 vote[s]
Please report broken snippets.
Report Broken Snippet
WordPress Hosting

Recent Comments