Testing a proprietary mechanism captcha. I found a gap in the mechanism, which allows the use of existing generated code: generated image (captcha code) is on a web server, until its correct use.
This allows its use in the newly created session, by replacing 2 values via "explore" in the any browser.
Image/Captcha is deleted after:
- correct form sending
- more than 15 minutes
Here I want to ask the question: Is it possible to "prevent" the removal of the temporary file from the server?
Aucun commentaire:
Enregistrer un commentaire