when submitting a form (webform module) that is not complete (meaning some mandatory fields are kept empty), I get a message "CAPTCHA session reuse attack detected" in addition to the messages "Field XXX is mandatory".

Thanks for your help.
Best regards,
Greg Michel

2011-09-20_16-11-57.png135.12 KBgregoire@inficiences.com
Members fund testing for the Drupal project. Drupal Association Learn more


Sanjaymore’s picture


Facing same issue "CAPTCHA session reuse attack detected" message get displayed. Also it is showing only one image in the captcha and after refreshing the page it is not changing the image. Let me know if there is any solution to above issue


acbramley’s picture

Issue tags: +#D7

+1 getting this error also on the latest 7.x-1.x-dev

acbramley’s picture

Component: User interface » Code
Priority: Normal » Major

Marking this as major and changing to a bug with the code, as it's almost definitely related to #918856: CAPTCHA Session Reuse message on webforms

wiifm’s picture

Seeing the same issue,

Whenever you visit a webform subject to captcha, the element is being processed twice. This is evident in with two calls to captcha_element_process().

What this means is that there gets written to the database 2x sid's and 2x token's for each page.

When the form is submitted it attempts to validate it twice as well.

Something is fundamentally wrong with the 7.x branch as it presently stands

carrierawks’s picture

This is happening with my install (6x-2.4). On the registration form I have it so people can add more zipcodes while registering. The only way I can get it to stop is to take these fields out of the registration process but they are VERY important to the project. So I hope this gets fixed soon.

jberg1’s picture

I'm getting an error on a form that has an image upload. It comes up when uploading images. It is sporadic, and it still completes the form and allows submission. Just throws the error on the AJAX upload box.

I think it is related to this:
#918856: CAPTCHA Session Reuse message on forms with AJAX funcionality (e.g. file upload, add another item, ...)

But is there a patch for Captcha 6x-2.4 to fix?

Is it fixed in 6.x-2.x dev ?


Liam Morland’s picture

Status: Active » Closed (duplicate)

Duplicate of #918856: CAPTCHA Session Reuse message on webforms . This should be backported to D6 once fixed in D7.