Support » Plugin: Spam Free WordPress » [Plugin: Spam Free WordPress] HTML getting through

  • Resolved Explorz


    I updated to 1.8.3 and received a license key. I use the key on three blogs. On all blogs there are two issues.

    The biggest issue is that in testing, html code gets through without being blocked. I type in a url and it posts to the blog. So, no I have blogs that are no longer protected. Basically Spam Free WordPress isn’t doing what it is designed to do.

    Please help.

    The second error is that the checkboxes don’t always stay checked in the settings area. I am not sure if this is related to using the Comment Form Message option or not. But saving changes often results in checkboxes showing as unchecked and I have to recheck them.

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author Todd Lahman


    I left a test comment link using HTML on your blog at, and the HTML was disabled properly by the plugin.

    The plugin does not block comments with HTML, it simply disables the HTML from working when a comment is viewed. For example, when you tested the link in a comment you may have noticed you can’t click it like a link, because it is rendered as plain text, exactly as the tooltip bubble explains next to the option. Hold your mouse over the question mark, and you’ll see the explanation.

    There is no reason to block a legitimate comment that uses HTML, when the plugin will render the HTML useless while allowing the comment through.

    The checkboxes not remaining checked isn’t something I’ve seen, nor has it been reported by anyone else. The checkboxes are rendered using the Settings API which I have not direct control over. It sounds like saving the checked box works the second time, so at least it’s a quirk that isn’t fatal.

    I got your messages on, and saw that you tried to reset your password. I added a login box, and a link to reset your password on, to make it easier to use the support forum if you log out, or forget your password. Knowing you were having these issues are the reason I replied here, rather than referring you to

    Check your Junk E-Mail or Spam folder for your password reset.

    To summarize, the plugin is working exactly as it was designed.

    I hope you will give the plugin a better rating than 1 now that you understand how it is working.

    Hey Todd, Was this resolved? I’m not clear on the resolution.

    url addresses are still getting through.

    Plugin Author Todd Lahman


    The plugin doesn’t block URL addresses, it does however block IP addresses if you enter them manually into the Blocklist.

    Normally WordPress converts URL addresses into a link, or it display a word with an HTML <a href="">word</a> as a link. When the plugin option “Remove Comment HTML” is checked the plugin will prevent the URL address from displaying as a link on the page, and instead displays it as plain text.

    Where did you read that the plugin blocks URL addresses?

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘[Plugin: Spam Free WordPress] HTML getting through’ is closed to new replies.