Title: Only client-side validation Last modified: August 11, 2025 --- # Only client-side validation * Resolved [Tim](https://wordpress.org/support/users/demo88/) * (@demo88) * [10 months ago](https://wordpress.org/support/topic/only-client-side-validation/) * Please mention in your readme that this is not a real captcha, since only client side validation is performed and that the whole captcha can be circumvented by using a simple curl request. Viewing 4 replies - 1 through 4 (of 4 total) * Plugin Support [Giovanni De Luca](https://wordpress.org/support/users/giovannideluca/) * (@giovannideluca) * [10 months ago](https://wordpress.org/support/topic/only-client-side-validation/#post-18597009) * Hi there, * Thank you for your message. * AFAIK the definition of “captcha” does not include any specific validation approach( client, server, both etc.). So I think the naming is correct. * Regarding the curl request. Can you please provide an example? * Best regards * Thread Starter [Tim](https://wordpress.org/support/users/demo88/) * (@demo88) * [10 months ago](https://wordpress.org/support/topic/only-client-side-validation/#post-18597045) * > AFAIK the definition of “captcha” does not include any specific validation > approach * You are right, the definition is: * > a computer program or system intended to distinguish human from machine input * Without server side validation you can simply send a curl request with the parameter“ kc_captcha” = “human” and that’s it with validation. How else do you think bot works? By inputing the data in the browser with a keyboard? * So no, this plugin does not distinguish between humans and bots. It just makes it harder for humans, not for bots. * Thread Starter [Tim](https://wordpress.org/support/users/demo88/) * (@demo88) * [10 months ago](https://wordpress.org/support/topic/only-client-side-validation/#post-18597056) * Example curl request: * curl -X POST [https://example.com/contact](https://example.com/contact) \ -H “ Content-Type: application/x-www-form-urlencoded” \-d “kc_captcha=human&first_name =Test&last_name=Bot” * No human input needed. * Plugin Support [Giovanni De Luca](https://wordpress.org/support/users/giovannideluca/) * (@giovannideluca) * [9 months, 3 weeks ago](https://wordpress.org/support/topic/only-client-side-validation/#post-18601546) * Thank you for the curl request. * I will have a look and release an update if necessary. * Have a nice weekend. Viewing 4 replies - 1 through 4 (of 4 total) The topic ‘Only client-side validation’ is closed to new replies. * ![](https://ps.w.org/contact-form-7-image-captcha/assets/icon.svg?rev=2970465) * [Image CAPTCHA for Contact Form 7 and WPForms by HookAndHook (DSGVO/GDPR)](https://wordpress.org/plugins/contact-form-7-image-captcha/) * [Frequently Asked Questions](https://wordpress.org/plugins/contact-form-7-image-captcha/#faq) * [Support Threads](https://wordpress.org/support/plugin/contact-form-7-image-captcha/) * [Active Topics](https://wordpress.org/support/plugin/contact-form-7-image-captcha/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/contact-form-7-image-captcha/unresolved/) * [Reviews](https://wordpress.org/support/plugin/contact-form-7-image-captcha/reviews/) * 4 replies * 2 participants * Last reply from: [Giovanni De Luca](https://wordpress.org/support/users/giovannideluca/) * Last activity: [9 months, 3 weeks ago](https://wordpress.org/support/topic/only-client-side-validation/#post-18601546) * Status: resolved