[Plugin: Register Plus] ERROR: Image Validation does not match.
Just installed RP (latest) in 2.5.1 and when trying a registration it throws back:
“ERROR: Image Validation does not match.”
and if there’s an apostrophe in the ‘About Yourself’ field it inserts a \ before the apostrophe when it refreshes with the error message?
FYI: I have 2 contact forms on the site that use captcha without any problems and tried it (RP) on ‘local’ install and ‘live’ install.
Same here, still a bit buggy. I also get the “ERROR: Image Validation does not match.” message.
Also, I noticed that the login panel loses the “remember me” next to the checkbox when the plugin’s text is shown “Thank you Mr.X. Your account has been verified….”.
I too have a captcha on my contact form and works without a glitch.
I’ll go back to WP-Disclaimer till this is fixed.
The image bug is quite simple to solve; I think that modifying $_SESSION variable of main script with another one that is just being launched by <img src=”” /> will not work… Just think about it, one link to an image and one could gain access to your whole $_SESSION.
I’ve made a temporary workaround by replacing:
$_SESSION['key'] = $ResultStr;// carry the data through session
$plik = fopen('captcha.md5','wb'); flock($plik, LOCK_EX); fputs($plik, md5($ResultStr)); flock($plik, LOCK_UN); fclose($plik);
in file captcha.php, and
$key=substr($_SESSION['key'],0,5); $number = $_POST['captcha'];
$key=trim(file_get_contents(trailingslashit(get_option('siteurl')) . 'wp-content/plugins/' . basename(dirname(__FILE__)) .'/captcha.md5')); $number = md5($_POST['captcha']);
in file register-plus.php (both in register-plus home directory).
The apostrophe thing is an easy fix, but the Captcha issue is odd, I have never gotten a mismatch. Can you guys give me a little more information about your servers?
What PHP version are you running?
Are you running on a windows or linux server?
Any other plugins activated that may possibly interfere with this one?
I tested the bejeebus out of it and it runs beautifully for me, so there is obviously something really different about our setups. Try it out at http://www.skullbit.com/wp-login.php?action=register
Unfortunately, many servers have file_get_contents disabled – so that fix will just cause more issues than it fixes. Also, I’m no security expert, but I don’t think using a $_SESSION variable in the image script will allow anyone to access your $_SESSION data. This will only create the $_SESSION data on the server the image is hosted on, not on a server linking to the image file. This seems to be a common practice for Captcha Scripts – so unless you can prove otherwise, I’m going to stick with it as it is the most compatible method I can find.
I’m going to change the Session key name in case it’s conflicting with something else on the server and add in md5 just cause it seems better. I’ll put up the upgrade and you guys can let me know if it changes anything for you.
Not sure what you mean by losing the “Remember Me” next to the checkbox – is the text gone and just a blank checkbox? This is another anomaly that doesn’t occur for me!
Any chance you could answer those questions I posted above? That would help me figure out the problem. Cheers!
Hi Skulbit, i got “ERROR: Image Validation does not match.” on your site too
Thanks for the update skullbit it’s stopped the \ from appearing but still get the image validation error.
On PHP 5 and linux server here with WP 2.5.1
Plugins used are:
1. Confirm User Registration 1.2.1
2. Dagon Design Form Mailer 5.4
3. Disable Canonical URL Redirection 1.0 (Inactive)
4. External Links 2.12
5. Register Plus 2.2
6. Witty Text 1.1
7. wp-cache 2.1.2
it’s not too hard to replace file_get_contents with fopen,fread,fclose, isn’t it?
about $_SESSION var, you are right. I’m not going to prove You anything, I can only explain that, if I understand correctly, You were trying to modify the main $_SESSION variable (in wp-login.php) in a script which was called as an image! I don’t think it’ll work, since that “image” starts new session, and when it finishes execution, the session is destroyed and so are its session variables.
I can prove You something else: try to
Mine shows NULL. But I may be wrong. Maybe it somehow bases on WP or server configuration…? I’m not sure, I’ve installed wordpress yesterday;)
I’ll stick with my version for some time – it’s ugly, but it works;)
I’m running RHEL with Litespeed webserver 3.3.11, PHP 5.2.1, APC Cache, Suhosin PHP Hardening.
Akismet, Viper VideoTags, Simple Tags, Brian Latest Comment, Dagon Design Form Mailer, Pagebar2, and Share This, and register plus 2.2
I disabled all the plugins except register plus and also suhosin PHP hardening. still same result.
Thanks for your help
I just tried out this plugin, and I’m afraid that I’m getting the same Image Validation problem. I’m on a Linux server, Apache version 1.3.41 (Unix), PHP version 5.2.5, MySQL version 4.1.22-standard.; and I just installed the newest version of WordPress last night. Currently active plugins, other than Register Plus: Akismet, Replace WP-Version and Yawasp.
Thank you for your help!
The common denominator here seems to be PHP5, whereas I’ve been testing in a PHP4 environment. I will install it in a PHP5 server tonight and see what happens, thanks for your feedback!
Captcha same here and I don´t get an Email Verification!
with checked: Prevent fake email address registrations.
- The topic ‘[Plugin: Register Plus] ERROR: Image Validation does not match.’ is closed to new replies.