On login.php remove
PHP Code:
<script type="text/javascript" src="captcha/captcha.js"></script>
and
PHP Code:
<tr>
<td> </td>
<td>
<div id="captchaimage">
<a href="<?php echo $_SERVER['PHP_SELF']; ?>" onclick="refreshimg(); return false;" title="Click to refresh image">
<img class="cimage" src="captcha/GD_Security_image.php?<?php echo time(); ?>" alt="Captcha image is messed atm" />
</a>
</div>
</td>
</tr>
<tr>
<td class="rowhead">PIN:</td>
<td>
<input type="text" maxlength="6" name="captcha" id="captcha" onBlur="check(); return false;"/>
</td>
</tr>
and on takelogin.php change
PHP Code:
if (!mkglobal("username:password:captcha"))
die();
session_start();
if(empty($captcha) || $_SESSION['captcha_id'] != strtoupper($captcha)){
header('Location: login.php');
exit();
}
to
PHP Code:
if (!mkglobal("username:password"))
die();
session_start();