WordPress.org

Forums

SI CAPTCHA Anti-Spam
BUG in captcha validation (4 posts)

  1. USSliberty
    Member
    Posted 4 years ago #

    Hi all,

    if you look at the HTML code generated by this plugin there is an hidden field called "si_code_com" that contains an alpha-numeric code, if you resolve the captcha, the pair "si_code_com" and the captcha code still remains avaliable. So now you can going ahead with this pair without resolving any other captcha.

    Cheers

    http://wordpress.org/extend/plugins/si-captcha-for-wordpress/

  2. USSliberty
    Member
    Posted 4 years ago #

    I also noticed that this behavior occurs when the PHP session's are disabled.

  3. Mike Challis
    Member
    Plugin Author

    Posted 4 years ago #

    I see one possible cause...
    But I need to know the exact steps you are using to test this condition. Rather than disclose it publicly, please contact me here:
    http://www.642weather.com/weather/wxblog/support/

    The form has an option to donate, you can skip that, I will still reply with priority.

    Thanks,

    Mike

  4. Mike Challis
    Member
    Plugin Author

    Posted 4 years ago #

    Thanks for the help testing.

    Version 2.7.4 fixes it
    - (18 Jul 2011) - Fixed bug in CAPTCHA code reset reported by USSliberty, please update now for better spam protection.
    - Fix CAPTCHA position on some themes like Suffusion.

Topic Closed

This topic has been closed to new replies.

About this Plugin

  • SI CAPTCHA Anti-Spam
  • Frequently Asked Questions
  • Support Threads
  • Reviews

About this Topic