What is JotForm?
JotForm is a free online form builder which helps you create online forms without writing a single line of code. No sign-up required.

At JotForm, we want to make sure that you’re getting the online form builder help that you need. Our friendly customer support team is available 24/7.

We believe that if one user has a question, there could be more users who may have the same question. This is why many of our support forum threads are public and available to be searched and viewed. If you’d like help immediately, feel free to search for a similar question, or submit your question or concern.


  • Profile Image

    How safe are the forms from "clickjacking?"

    Asked by corbinlawfirm on August 26, 2014 at 09:55 AM

    I embed the script directly into my html (php). I am writing to ask about any security issues associated with the iframe. Primarily, I'm concerned the form or the submit button can "clickjacked."

    Thank You

     

     

     

    security issues
  • Profile Image
    JotForm Support

    Answered by Welvin on August 26, 2014 at 10:28 AM

    Hi,

    We have a security measures added to the form. We also have a validation for the submitted data based on the field type. When the form is submitted, a post method takes place before the data get submitted to our servers.

    Clickjacking means that after you click on a link, it redirects you to another website or link instead of the original one. I know most updated browsers can easily detect this kind of a trick. 

    You can secure your form: http://www.jotform.com/help/63-How-can-I-receive-SSL-Submissions. I am sure this would prevent clickjacking since the form is loaded to a secure URL. If anyone does it, it prompts a security warning. Most clickjacking uses a non-secure links.

    Thank you!