Open razzerar opened 3 years ago
That looks like you're only validating the response if it exists.
We've found lots of spammers will simply delete the g-recaptcha-response form fields before submitting the forms, hoping for validation like yours. You need to validate when you expect the response should be in the form, not just when you find it.
Since last week something happened and the ReCaptacha and i re downloaded the ZIP from here and uploaded the new files. I have he following code in my registration form but still spammers are getting trough since this happened.
Anyone got any solution?