Re: mail() injection, am i safe? — PHP Programming Language

You are here: Re: mail() injection, am i safe? « PHP Programming Language « IT news, forums, messages

Posted by Toby Inkster on 11/14/05 22:24

Simon wrote:

> the message is created using the info given by the user. _but I don't check
> that data_.
> What could they inject into the message that would cause mail(...) to be
> unsafe?

$_POST['message'] = "BCC: me@example.com\r\n\r\nlalala";

--
Toby A Inkster BSc (Hons) ARCS
Contact Me ~ http://tobyinkster.co.uk/contact

Navigation:

Next in forum: multiple stacks, multiple versions bother anybody, or is it just me?
Prev in forum: Re: nonstandard symbols: function to replace?
Thread view: Re: mail() injection, am i safe?

[Reply to this message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация