Posted by Marcin Dobrucki on 03/14/06 10:49

Q wrote:
> Hi..
>
> This script has been abused to send to AOL. My question "How the ... did
> they do that???"

> $headers .= "From: \"".$_POST[name]."\" <".$_POST[email].">\n";
>
> mail('some@recipient.somewhere', "Website: ".$_POST[subject],
> nl2br($_POST[text]), $headers);

$_POST['email'] = 'foo@bar.com>\nBcc: <somewhere@over.the.rainbow';

or something similar.

• Next in forum: Re: abused mailscript => How did they do it???
• Prev in forum: Re: ascii or binary
• Thread view: Re: abused mailscript => How did they do it???

[Reply to this message]