the problem is that you don't understand how websites work -- like many people.
The question is what your server
does and how it reacts to input. Does your server simply believe me if I tell it that I got so and so many points? Well, then I'm gonna tell your server that I have 10,000 points. I don't even need a browser for this. I simply go to the command line and send your server a message with this score. That's it, I just won your price.
The only way to prevent this is to check the answers and calculate the score on the server
. When a user visits your website, you start a session
, you create a session variable for the score, and then you wait for the answers to the question. For every correct answer you increment the score in the session. And at the end, you check the total score.
This does not
prevent cheating. People can simply repeat the test or share the correct answers. But a session at least forces your users to actually send answers rather than just making up their own score.
So you need to remove all score