How to Remove the URL Field From WordPress Comments

WordPress’s default comment form includes three fields: Name, Email, and Website (URL). The URL field was originally intended to let commenters link to their own blog, a convention from the early days of WordPress when blog networks were common.

Today it is a spam magnet. Automated bots submit comments with URLs pointing to low-quality or malicious sites, hoping to get a link published on your domain. Even with Akismet or other spam filters active, these submissions add noise to your moderation queue and occasionally slip through.

Removing the URL field has two effects:

• It eliminates a vector spambots use specifically to get links placed. Most comment bots target the URL field, not just the comment body.
• It reduces your moderation workload, since fewer spam comments are submitted in the first place rather than just caught after submission.

The trade-off is minor: genuine commenters who want to share their site can no longer do so via the comment form. In practice, most readers on content-focused sites do not use the URL field anyway.

WooCommerce note: If your site runs WooCommerce, note that product reviews use a separate comment template. The PHP method below will also remove the URL field from WooCommerce product reviews. If you want to remove it from blog comments only, use the plugin method, which gives you more granular control per form type.

The quickest way is to add a small function to your theme’s functions.php file. This method requires no plugin and the change takes effect immediately:

function ScanWP_disable_comment_url($fields) {
    unset($fields['url']);
    return $fields;
}
add_filter('comment_form_default_fields','ScanWP_disable_comment_url');

Add this to your functions.php file and the URL field will be removed from all WordPress comment forms on your site. The function hooks into the comment_form_default_fields filter and unsets the url key from the fields array before WordPress renders the form.

A few notes:

• This only affects the default WordPress comment form. If you are using a third-party comment plugin (Disqus, Jetpack Comments, etc.), the plugin controls its own form fields.
• Existing comments that already have a URL stored are unaffected. The URL data remains in the database, it just will not be collected from new comments.
• If you are using a child theme, add the function to the child theme’s functions.php to avoid losing it on theme updates.

If you are not comfortable editing PHP files directly, see Method 2 for a plugin alternative. You can also read about WordPress antispam plugins for a broader approach to comment spam reduction.

If you would rather not edit PHP files, a plugin like Comment Form Fields Editor (free on the official WordPress plugin repository) lets you control which fields appear in the comment form from the WordPress admin without any code.

To use it:

1. Install and activate Comment Form Fields Editor from Plugins > Add New.
2. Go to Settings > Comment Form Fields.
3. Locate the Website (URL) field and uncheck it or toggle it off.
4. Save. The field is immediately removed from your comment form.

This approach is fully reversible. You can turn the field back on at any time from the same settings screen. It is the better choice if you are managing a site for a client who may want to re-enable the field later without needing a developer.

Other plugins that include comment form field control:

• Yoast SEO: Includes a “Comment URLs” setting under its Social settings that disables the URL field sitewide. If Yoast is already installed, this is the simplest option with zero additional plugins.
• Jetpack: Replaces the comment form entirely with its own system. The URL field behavior depends on Jetpack’s own settings, not WordPress defaults.
• Security plugins (Wordfence, iThemes Security): Some include comment spam options, but few offer field-level control. These are better suited to blocking spam submissions after the fact rather than removing the URL field specifically.

For most sites, either the PHP snippet or Comment Form Fields Editor is the right tool. The PHP approach is permanent and requires no plugin management; the plugin approach is better when you want a toggle you can control from the admin panel.

If your site uses a Block Theme (introduced in WordPress 5.9) and the Full Site Editor rather than a Classic Theme, the standard PHP snippet still works for the comment form, but there is an important difference to be aware of.

Why this matters for Block Themes:

Block Themes render the comment form through a block-based template, typically the comments.html template part in your theme’s /templates/parts/ folder. The comment_form_default_fields filter still fires and still removes the URL field from the PHP-rendered output. However, some newer Block Themes override the comment block with a custom block implementation that may not go through the standard filter at all.

How to check whether the PHP snippet is working in your Block Theme:

1. Add the PHP snippet to your active theme’s functions.php or a site-specific plugin.
2. Navigate to any post on your site that has commenting enabled.
3. Scroll to the comment form. If the Website field is gone, the snippet worked.
4. If the field is still showing, your theme is using a custom block for comments. In that case, check your theme’s Block Templates in the Site Editor (Appearance > Editor) and look for a Comment Form block or Comments Query Loop block. Some themes allow you to edit the comment form layout directly in the block editor and simply delete the URL field block from the template.

Plugin alternative for Block Themes:

The plugin approach (Comment Form Fields Editor) typically works with Block Themes because it hooks into the same filter. But if the theme bypasses standard WordPress filters, the plugin will not work either. In that situation, editing the block template directly in the Site Editor is the most reliable fix.

For the majority of sites using popular Block Themes like Twenty Twenty-Four or Kadence’s block theme, the PHP snippet approach works without issue.

After making the change with either method, do a quick verification before considering the task done.

Verify the URL field is removed:

1. Open your site in a private/incognito browser window. This ensures you are not seeing a cached version of the form.
2. Navigate to any published post with comments enabled.
3. Scroll to the comment form. The Website field should be absent. The form should show only Name, Email, and the comment text area.
4. Right-click the comment form and choose Inspect Element. Search the form’s HTML for id="url" or name="url". If those attributes are gone, the field has been removed at the HTML level, not just hidden with CSS.

What to expect from your spam queue afterward:

Most sites see a drop in spam comment submissions within 24 to 72 hours. The reduction is not always immediate because some spam networks cache target URLs and keep submitting for a short period even after the field disappears. After about a week, the volume typically drops to near zero for the lowest-effort bot traffic.

Akismet and similar tools still catch the small amount of keyword-stuffed spam submitted through the comment body. Removing the URL field does not eliminate all spam, but it removes the category that was specifically targeting your site for link building.

What about existing comments with URLs?

URLs already stored in your comment database are not deleted by either method. If you want to clean those up, you can do a direct database search in phpMyAdmin for the comment_author_url column in the wp_comments table and selectively clear URL values from older spam entries. This is optional and only makes sense if you have a large number of spam-approved comments that slipped through your filter in the past.