Correct Captcha reports mismatch

Even though I key in the correct captcha, I still get an error message saying it doesn't match. What do I need to do to resolve this? I've deleted the page and recreated a new page, but the same thing happens. Does anyone know what would be causing this?

Thanks.

Jan

It could be that the servers session management settings are not configured properly.

test the server using the session test page in the following post.

If the session test passes, please send a copy of your page in a zip archive and a link where i can test it.

There is no link for me to go to that you refer to.

Thanks.

Sorry, guess i need more coffee.

here's the link:
showpost.php?p=23826&postcount=2

The session is = test and the session id did not change when I pressed the 1st or 2nd link again.

can you send a copy of your page please so i can look at the code.

Here you go.

change line 15:

$WAFV_Errors .= WAValidateLE((strtolower(isset($_POST["Security_Code"])?$_POST["Security_Code"]:"")) . "",((isset($_SESSION["captcha_Security_Code"]))?strtolower($_SESSION["captcha_Security_Code"]):"") . "",true,5);

$WAFV_Errors .= WAValidateLE((strtolower(isset($_POST["Security_Code"])?$_POST["Security_Code"]:"")) . "",((isset($_SESSION["captcha_Security_Code_1"]))?strtolower($_SESSION["captcha_Security_Code_1"]):"") . "",true,5);

your original code is comparing to the captcha_Security_Code session variable, but the session is being created as captcha_Security_Code_1

Thanks Jason, that resolved the issue with that document.

I have the same issue on another site. I removed the captcha because the image was not showing, but it did on my test site. On the host Freetype is not enabled, so that is why I removed.

Attached is this page.

I'm curious, how did you know that the session was using Code_1?

Thanks.

if you remove the captcha image, you need to also remove the captcha validation:

$WAFV_Errors .= WAValidateLE((strtolower(isset($_POST["Security_Code"])?$_POST["Security_Code"]:"")) . "",((isset($_SESSION["captcha_Security_Code"]))?strtolower($_SESSION["captcha_Security_Code"]):"") . "",true,5);

delete that line.

if you look at the code to create the captcha image:

<div class="fieldGroup"><img id="capt1"  src="webassist/captcha/wavt_captchasecurityimages.php?width=220&height=50&field=Security_Code_1&bgcolor=CCFF00&transparent=0&bgimage=&gridfreq=20&gridcolor=000000&gridorder=behind&noisefreq=20&noisecolor=000000&noiseorder=behind&characters=6&charheight=&font=fonts/MOM_T___.TTF&textcolor=000000" alt="security code" width="220" height="50" /><img  src="webassist/captcha/images/refresh.png" height="18" onclick="document.getElementById('capt1').src+='&ref=1'" /></div>

Look for the "field" querystring variable being passed:
&field=Security_Code_1&

the captcha session variable will use the value of the field querystring variable with "captcha_" in front as the name:
captcha_<fieldQuesrystring>

or in this case:
captcha_Security_Code_1