- corbinlawfirmAsked on August 26, 2014 at 09:55 AM
I embed the script directly into my html (php). I am writing to ask about any security issues associated with the iframe. Primarily, I'm concerned the form or the submit button can "clickjacked."
- JotForm SupportWelvinAnswered on August 26, 2014 at 10:28 AM
We have a security measures added to the form. We also have a validation for the submitted data based on the field type. When the form is submitted, a post method takes place before the data get submitted to our servers.
Clickjacking means that after you click on a link, it redirects you to another website or link instead of the original one. I know most updated browsers can easily detect this kind of a trick.
You can secure your form: http://www.jotform.com/help/63-How-can-I-receive-SSL-Submissions. I am sure this would prevent clickjacking since the form is loaded to a secure URL. If anyone does it, it prompts a security warning. Most clickjacking uses a non-secure links.