Hi there,
One of my clients has issue about the Gift certificates. I think a spam robot attacted the GC create form, and put a lot of GC to the cart.
We made an image verification to the GC page, so the robot cannot access to that function.
The solution:
controller file:
/addons/gift_certificates/controllers/gift_certificates.php
```<br />
<br />
Insert the following code after the:<br />
```php
if ($mode == 'add') {
``` line<br />
code:<br />
<br />
```php
<br />
if (fn_image_verification('gift_certificate_validate', empty($_REQUEST['verification_answer']) ? '' : $_REQUEST['verification_answer']) == false) {<br />
fn_save_post_data();<br />
if (defined('AJAX_REQUEST')) {<br />
exit();<br />
} else {<br />
return array(CONTROLLER_STATUS_REDIRECT, "gift_certificates.add");<br />
}<br />
<br />
}
```<br />
<br />
Template file:<br />
```php
/skins/YOURSKIN/addons/gift_certificates/views/gift_certificates/update.tpl
```<br />
<br />
insert this line of code before the<br />
<br />
```php
<div class="buttons-container">
```<br />
<br />
code:<br />
```php
{include file="common_templates/image_verification.tpl" id="gift_certificate_validate"}