I received a comment with the following in the body of the comment :
<meta HTTP-EQUIV="REFRESH" CONTENT="10;URL=http://www.----.---"> coool</meta>
This is an obvious attempt to force the page to re-load to show the intended URI (which I blanked out above).
WordPress displayed “<p>coool</p>” and that’s the end of the matter.
Just one of the few reasons why the html allowed in the comments in WordPress blogs is restricted to a few html tags. I love it when things work silently in the background, protecting from stupid evil people.
Sorry, the comment form is closed at this time.