Topic awaiting preservation: Email in PHP |
|
---|---|
Author | Thread |
Nervous Wreck (II) Inmate From: |
posted 06-08-2006 10:36
I have created a simple form to be sent via email in PHP> |
Lunatic (VI) Inmate From: under the bed |
posted 06-08-2006 15:28
Before anything else, throw a test page up which, rather than attempting to send an email, simply spits out the variables you are using. Make sure your data is actually making it through. |
Maniac (V) Mad Scientist with Finglongers From: Germany |
posted 06-08-2006 15:40
Whatever your testing brings: Don't use this form as it is. |
Nervous Wreck (II) Inmate From: |
posted 06-08-2006 15:58
Thanks Tyberius Prime & DL-44, |
Maniac (V) Mad Scientist with Finglongers From: Germany |
posted 06-08-2006 17:09
Honestly - you ned to read up on this instead of just patching something together. code: if ( strpos ( $HTTP_POST_VARS['email'], "\r") !== false ) || ( strpos ( $HTTP_POST_VARS['email'], "\n") !== false ) || die ( "Header injection")
|
Maniac (V) Mad Scientist From: 100101010011 <-- right about here |
posted 06-08-2006 17:14
Check out this bit on Email Injection |
Lunatic (VI) Inmate From: under the bed |
posted 06-08-2006 18:05
Take a look at this thread as well - http://www.ozoneasylum.com/27650 |