Title: Only validates client-side
Last modified: February 25, 2025

---

# Only validates client-side

 *  [Roy Orbitson](https://wordpress.org/support/users/lev0/)
 * (@lev0)
 * [1 year, 3 months ago](https://wordpress.org/support/topic/only-validates-client-side/)
 * The code this is based on (ebcaptcha), and thus this plugin, only disable the
   submit button in client-side JavaScript. For humans, this is easily bypassed 
   using the DOM inspector. For bots, it has no effect at all because they POST 
   form data directly, and don’t actually use the form like human would. There is
   no server-side validation. This makes forms appear to be protected, and slows
   down real humans, but fails at its primary purpose.

The topic ‘Only validates client-side’ is closed to new replies.

 * ![](https://ps.w.org/math-captcha-for-elementor-forms/assets/icon-256x256.png?
   rev=2490379)
 * [Math Captcha for Elementor Forms](https://wordpress.org/plugins/math-captcha-for-elementor-forms/)
 * [Support Threads](https://wordpress.org/support/plugin/math-captcha-for-elementor-forms/)
 * [Active Topics](https://wordpress.org/support/plugin/math-captcha-for-elementor-forms/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/math-captcha-for-elementor-forms/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/math-captcha-for-elementor-forms/reviews/)

 * 0 replies
 * 1 participant
 * Last reply from: [Roy Orbitson](https://wordpress.org/support/users/lev0/)
 * Last activity: [1 year, 3 months ago](https://wordpress.org/support/topic/only-validates-client-side/)