Spam Form Submissions - Hacked ?
Permalink
Hi,
I have a form on a website that is set so that responses are moderated, there is a captcha to solve and there is an email address that is notified. It is and has been working fine.
One day the site received 890 submissions all at around the same time that show up in the database as approved and no emails were received. The submissions contained the rubbish about pharmaceuticals and alarmingly lots of extremely obscene references to porn. This is a book website for young children so I have to make sure this cannot happen again.
Suggestions please as to what I should do to find any holes in my form submission.
Thanks
I have a form on a website that is set so that responses are moderated, there is a captcha to solve and there is an email address that is notified. It is and has been working fine.
One day the site received 890 submissions all at around the same time that show up in the database as approved and no emails were received. The submissions contained the rubbish about pharmaceuticals and alarmingly lots of extremely obscene references to porn. This is a book website for young children so I have to make sure this cannot happen again.
Suggestions please as to what I should do to find any holes in my form submission.
Thanks
There are some alternate captcha addons you could try, see if they make a difference. I think you need to be running a 5.6+ core to use them (not sure what version is required, the addon pages should tell you).
@djohnson
I've just released a package to beef up spam protection in Concrete5.
http://sourceforge.net/projects/srprojecthoneypot/...
No guarantees, but give it a try.
I've just released a package to beef up spam protection in Concrete5.
http://sourceforge.net/projects/srprojecthoneypot/...
No guarantees, but give it a try.
That seems very odd. Is this a custom form or are you using the form block?
