elplatt
/
freelancer-theme
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

validate email address to prevent header injection

Browse Source
main
Greg Molnar 10 years ago
parent 01f53b4d6f
commit 4754596ded
1 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File

7
mail/contact_me.php
Unescape Escape View File

@ -11,10 +11,15 @@ if(empty($_POST['name']) ||
} }
$name = $_POST['name']; $name = $_POST['name'];
$email_address = $_POST['email']; $email_address = filter_var($_POST['email'], FILTER_VALIDATE_EMAIL);
if ($email === FALSE) {
echo 'Invalid email';
exit(1);
}
$phone = $_POST['phone']; $phone = $_POST['phone'];
$message = $_POST['message']; $message = $_POST['message'];
// Create the email and send the message // Create the email and send the message
$to = 'yourname@yourdomain.com'; // Add your email address inbetween the '' replacing yourname@yourdomain.com - This is where the form will send a message to. $to = 'yourname@yourdomain.com'; // Add your email address inbetween the '' replacing yourname@yourdomain.com - This is where the form will send a message to.
$email_subject = "Website Contact Form: $name"; $email_subject = "Website Contact Form: $name";

Write Preview
Loading…
Cancel
Save