I have several websites that use web forms (javascript client side and vbscript/asp server side).
I'm having problems with my web form urls being targeted and used for advertising other urls/sites. Someone fills in the forms with advertising information.
I'm not sure what this process is called or the purpose of hijacking web forms to send advertising info and links. And I definitely don't understand how it works.
I try countering it by changing the name of my web page but this only works for a while until the next time they get hijacked again.
If anyone knows what I'm talking about and have some ideas on how I can counter this, please let me know. Any help will be appreciated
If you mean people are sending out emails under your domain name name then it's called phishing. They'll be able to open a session on your server by entering code into your forms. The best way is to either validate the data entered into your forms for any abnormal characters (ie: not alpha/numeric) else, get rid of the forms all together.
It can also be possible by storing their IP and banned them to all of your web forms page at once. I hope thats how people out their avoid the hijackers.