The WA Liberal Party's attempt to encourage whistleblowers to give it sensitive information about political opponents has backfired, with the website it set up referred to the State Solicitor's Office.

The website, set up by Opposition Leader Mike Nahan urging whistleblowers to send the Liberals allegations of corruption, was also described by cyber security experts as "dangerous and stupid".

The wawhistleblowers.com website, which first emerged yesterday, urged anyone aware of misconduct by "public officers, including Government ministers and Members of Parliament" to submit the details via an online form.

That form would then send the details of the allegations to the Liberals.

The website requests users enter their email address and details of allegations, such as "acting corruptly", "engaging in gross misconduct" and "wasting taxpayer funds".

"This form is 100 per cent confidential," the website said.

Acting Premier Roger Cook said the Attorney-General was seeking advice from the State Solicitor's Office on whether the website was illegal.

"The website encourages a public servant who observes illegal conduct to not report it to a relevant authority ... but instead to go to the Liberal Party," Mr Cook said.

"This is not only unwise and dangerous advice, but it is potentially illegal advice."

David Glance, director of UWA's Centre for Software Practice, said data submitted to the website was not encrypted and was therefore vulnerable.

Dr Glance also said he suspected the site was vulnerable to hacking attempts which would reveal submissions, urging possible whistleblowers to steer clear of it.

"It seems to have been put up with the minimum amount of thought put into it," he said.

"It is irresponsible, saying it is anonymous and then encouraging people to put an email address in and using an email form for this type of communication is ridiculous.

"If a third-year student did something like this, they would fail the assignment."

Government's 'glass jaw' sent them straight to lawyers: Nahan

Dr Nahan defended the website, saying his office had taken steps to improve security and insisting that any evidence would be passed on to relevant authorities.

He accused the Government of having a "glass jaw", for referring the matter to the State Solicitor's Office.

"If the first action is to go to the lawyers, they have something to hide," the Opposition Leader said.

"It's standard policy to go out to the community, particularly in these days of social media, and ask people to directly provide you information."

Corruption and Crime Commissioner John McKechnie said anyone with evidence of serious misconduct should refer them straight to his agency.

"We are set up to deal with serious misconduct, we have the legal and the other tools to do so effectively," he said.

"I, frankly, don't know what this website is, I've had a look at it but I don't know its motivation."

Spoof website registered within minutes

After he was contacted by the ABC, Dr Glance registered the domain wawhistleblowers.com.au - differentiated from the original by only the '.au' suffix - and said it would be possible for him to duplicate the website within a few minutes.

"Then I could fool people to thinking it was the Liberals' version of the site and have people mail me with their whistleblowing," he said.

"It is so easily spoofed."

Craig Valli, from Edith Cowan University's security research institute, said there was a "high probability" cyber criminals could access information submitted to the site.

"The fact that the website has a mode of insecure access on it indicates there are other problems with the security of the data being held," he said.

After media queries, the website was updated, removing a note saying whistleblowers were afforded additional safeguards under the Public Interest Disclosure Act.

It also added a call for "broken election promises" and "any politicisation of the public sector" to be reported.

Mr Cook said disclosing of information to anyone other than the relevant authorities potentially meant whistleblowers were not protected by the Public Interest Disclosure Act.

According to publicly-available registration data, included below, the website is registered in Dr Nahan's name via the firm "Crazy Domains", with staffer Chris Garner's email used to lock in the domain.