A Web Form Built with the GET method This method (low security) means that the form will push the data into the URL and you will see it. e.g. hanks.asp?orgname=charity&vote=true How do I tackle this option? How to break: Find that URL and go ham on the refresh button. Hide the cookies and IP address if they are tracking. Post that anywhere you can and every click will equal a vote.