Continuing the discussion from URL of website:
We get a lot of bot registration spam to greenfins.net so have a Firewall rule to protect our Wordpress registration with JS Challenge.
(http.request.uri contains "/wp-login.php?action=register") or (http.request.uri.path contains "/xmlrpc.php")
This has worked well but recently the JS Challenge has been falling back to hCaptcha more frequently – when this happens the data from the form is lost and the user receives a cryptic error from Wordpress complaining about the lack of data. (see screenshots below)
Has anyone else come across this issue? @mdemoura mentioned that this was fixed back in Dec 19 so wondering if this is an issue with my rule rather than something wider?
Also if anyone can explain to me why we are now seeing more hCaptcha than before that would really help! JS Challenge worked so well before!