The only reason I can think of is web application vulnerability testing. Maybe they have automated the sending of data and testing of the response to check for XSS (cross-site scripting). Are there any special characters that should be escaped in the submission? Larry