Re: Injection in mail()
- From: "flamer die.spam@xxxxxxxxxxx" <die.spam@xxxxxxxxxxx>
- Date: 23 Nov 2006 16:10:54 -0800
moosus wrote:
G'day Guys,
Do I need to worry about cleaning my $_POST[comments] field before using it
in a mail() function?
Cheers
moosus
you mean incase someone inserts malicious code into your web forms??
yes you should use striptags(), look at http://www.php.net/striptags
there are example scripts there that do a pretty good job of cleaning
anything slightly malicious - striptags on its own isnt 100% surefire.
Flamer.
.
- Follow-Ups:
- Re: Injection in mail()
- From: moosus
- Re: Injection in mail()
- References:
- Injection in mail()
- From: moosus
- Injection in mail()
- Prev by Date: Re: How to get the modifcation date of an uploaded file
- Next by Date: Injection in mail()
- Previous by thread: Injection in mail()
- Next by thread: Re: Injection in mail()
- Index(es):
