How to disable HTML in WordPress comments (easy and quick)

WordPress allows the use of certain HTML tags in the comments section, such as <a>, <em>, and <strong>, which can be beneficial to commenters. However, on the other hand, they are often exploited by spammers.

Spam comments often contain HTML links and bold text to promote unwanted content, which are frequently generated by bots, filling your website with undesirable material.

Fortunately, you can easily disable HTML in WordPress comments, which will help reduce spam and make the discussion area cleaner and safer.

Why disable HTML in WordPress comments?

Enabling HTML in comments allows users to format their text, but it also opens the door to abuse, such as using bots to post inappropriate messages or create potentially harmful links.

Disabling HTML makes comments with tags, such as:

• I really like your post!  <em>It changed my life!</em> It changed my life! Visit my <strong>blog</strong> for more tips!  Visit <strong>my blog</strong> for more tips!

Still displayed, but HTML tags will no longer have any effect, which will help keep the content in your comments section safe and orderly.

How to disable HTML in WordPress comments

Normally, disabling HTML in comments requires adding code to the theme's functions.php file, which can be complex and risky, potentially breaking the website if done incorrectly. Therefore, we recommend using the WPCode plugin for safety and ease of management.

How to use WPCode to disable HTML in comments

• Install and activate the WPCode plugin
  • You can use the free version to add custom code.
  •  If you need additional features, you can upgrade to WPCode Pro.
• Go to the Code Snippets menu > + Add Snippet
• Select 'Add Your Custom Code (New Snippet)' and then press the '+ Add Custom Snippet' button.
• Select the code type as 'PHP Snippet'
• Add the following code in the Code Preview box:

add_filter( 'preprocess_comment', function( $incoming_comment ) {

$incoming_comment['comment_content']  = htmlspecialchars( $incoming_comment['comment_content'] );

$incoming_comment['comment_content'] = str_replace( "'", '', $incoming_comment['comment_content'] );

devolver $incoming_comment;

});

add_filter( 'comment_text', function( $comment_to_display ) {

$comment_to_display = str_replace( '', "'", $comment_to_display );

return $comment_to_display;

});

• Name the code clearly, such as 'Disable HTML in Comments'.
• Activate the code by changing the status from 'Inactive' to 'Active' and then click 'Save Snippet'.

Test the results

You can try commenting on your website using HTML tags and see the result where the text still appears, but the HTML tags won't work.

Note: This method is beginner-friendly and does not require editing the core WordPress files.

Additional tip:  Disable Auto-Linking in comments.

WordPress automatically converts URLs typed in comments into links, which can be a potential source of spam.  If you want to disable this feature for added security, you can easily use WPCode to add custom code.

If you want to know how to do it in detail, you can check our guide on disabling automatic links in WordPress comments.

Disabling HTML in WordPress comments is an effective way to reduce spam and make your website more secure. With the WPCode plugin, you can easily set it up without having to modify the core WordPress system files.

I hope this article is helpful, and if you want to further improve the comment system, don't forget to explore plugins that enhance functionality for WordPress and learn how to display the most commented posts on your website.