Descripción
WordPress redirects /?author=(number) to /author/(userID) if the author id exists. This is the security vulnerability because an internet user might be able to know all User ID and the user name in a website using WordPress.
If you can control the configuration of a web server, you had better use the rewrite rule (Search as “Block Author URLs”) for reducing the system load of WordPress.
The plugin prevents the security vulnerability regarding the author archive redirection.
Detailed Behavior
1. It isn’t applied in the admin dashboard.
2. If “author” query in URL (QUERY_STRING) exists, displays 404 error.
3. If “/author/” in REQUEST_URI involves, redirects to the top page.
4. Apply to the “redirect_canonical” hook, too.
Instalación
The operation is the simple.
Please install this plugin and activate it.
Reseñas
No hay reseñas para este plugin.
Colaboradores y desarrolladores
Este software es de código abierto. Las siguientes personas han contribuido a este plugin.
Colaboradores
“Disable Author Archive Redirection” ha sido traducido a 1 idioma local. Gracias a los traductores por sus contribuciones.
Traduce “Disable Author Archive Redirection” a tu idioma.
¿Interesado en el desarrollo?
Revisa el código, echa un vistazo al repositorio SVN o suscríbete al registro de desarrollo por RSS.
Registro de cambios
2.1.2
- Tested up 6.7.2 with PHP 8.3.19 and 8.4.5.
2.1.1
- Fixed a problem that the “include” folder had not been uploaded. If your site is not working due to the plugin, please remove the plugin via FTP and reinstall it again.
- Tested up 6.5.2 with PHP 8.3.6
2.1
- Fixed the problem with a warning message when using WP-CLI.
2.0
- Supported the multisite.
- Added the setting menu.
- Tested up 5.6 with PHP 7.4
- Tested up 5.8
- Tested up 6.0
1.0
- First Released.