Captcha problem users just refresh and it will let them auto submit again
Posted on
16th Feb 2014 07:03 pm by
admin
Users will just re submit and not have to enter the new captcha.. ? Lol but if i refresh the page, the captcha auto makes a new1 so u cant submit.
But if u enter captcha code alrdy, then submit form correctly, and press refresh to auto submit form, it does it? This is a major security risk here is my code, thanks:
Code: session_start();
$RandomStr = md5(microtime());// md5 to generate the random string
$text = rand(10000,99999);
$_SESSION["key"] = $text;
$height = 25;
$width = 35;
$image_p = imagecreate($width, $height);
$black = imagecolorallocate($image_p, 100, 5, 5);
$white = imagecolorallocate($image_p, 155, 155, 025);
$font_size = 16;
$text=substr($_SESSION['key'],0,3);
imagestring($image_p, $font_size, 5, 5, $text, $white);
imagejpeg($image_p, null, 80);
then my HTML:
Code: <tr class="bts ce"><td colspan=2><b>Security Code Confirmation</b></td></tr>
<tr>
<td align="right">Your unique security code<input type="hidden" name="secId" value="76c2b0e6f20ed0f1b209bcf39dee8e06"></td>
<td>
<img src="php_captcha.php">
<span class="desc">If The images are broke, please contact us.</span></span>
</td>
</tr>
Is there a way so people cant auto submit form?
Captcha works if u refresh but people can just auto submit the form and it will keep submiiting...
No comments posted yet
Your Answer:
Login to answer
312 
34 
Other forums
Do While statement
hi guys,
This may sound trivial but im new to php and as part of an assignmenti have to const
Check Digits and extracting digits
I think I can figure out the code for this but I am having a very hard time getting past the first s
Can't find a decent web analytics!!!
I've downloaded and installed Piwik. It's location detection based on IP addresses is fairly inaccur
Automatic Webpage ??
I have a page www.mysite.com/test.php with a
<form>
<textarea name=&q
Help building / using array
First - this is a cross-posting, if this is wrong I apologise! What started out as a MySQL query que
cURL and Sessions
Ohai.
So, I'm trying to cURL a bunch of things off of a page, and put them into a session. I'
(sub)screen resize modification doesn't work after ECC 6 EhP 4 installation
Hello,
We have previously extended the size of the custom data tab on PO transaction ME23
[RESOLVED] Socket/Port remains open after app crashes
I'm having this problem with a networked app in vb.net.
If the program exits normally the por
simple php table loop
Hi all,
I've the following code
<?php // Create category optionsChange log of Cost centre change in Plant maintenance order
Hi,
How to view Change log of Cost centre in Plant maintenance order. Not visible thru 'Docume
