Somebody from websecurity.com.ua has contacted me regarding a vulnerability of Auto-Input Protection (AIP) . I was able to confirm that reusing an older web form to bypass the AIP web control, even if the CAPTCHA image is no longer valid, is in fact a