If we want to get around that, when the mediawiki software constructs a real URL from an internal link that uses these additional params, it could also embed a token to be used to verify that the link came from an internal link rather than a foreign site. The token would need to be a moving target to prevent foreign sites being able to use it.
Since wikis are, by their very nature, editable, I don't think we can trust internal links any more than we trust external ones.
The only way I can see this working is to severely restrict what can be done with these parameters. For example, they should never, under any circumstance, be parsed, as wikitext or HTML.