Weird emails generated from php contact form
Date: 05/04/06
(PHP Community) Keywords: php, browser, security, web, google
I'm pretty new to php, and this may be the dumbest question ever asked, but it's freaking me out.
I have a contact form on a website in php and it works perfectly fine. Once in a while, however, I will get 5-6 emails at once, all sent from the form, with weird email addresses (i.e. with the domain name of my site) that fill in all fields with the email address and the message is some sort of garbled version of a story by Hans Christian Andersen -- (I only know this because I googled the lines).
I have the form automatically send me an email that fills in field so that I get an email like the following if someone has an issue with the website:
Someone has a website issue.
A user, $name, has an issue on the page $url
The issue is: $message
They are using $browser as a web browser and when asked if they would like a follow-up they said $followup.
Their email address is $email
But I will sometimes get emails like the following:
Someone has a website issue.
A user, blood7007@mydomain.com, has an issue on the page et
Content-Type: multipart/alternative; boundary=c4ac4da924461ca45d3cbd03ebe2afb9
MIME-Version: 1.0
Subject: a brother
bcc: bajfla2@aol.com
This is a multi-part message in MIME format.
--c4ac4da924461ca45d3cbd03ebe2afb9
Content-Type: text/plain; charset=\"us-ascii\"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
what a struggle his soul had passed through. he disputation continued. ilhelm was in one of his eloquent moods. he doctor regarded the etters of the andering host as one of the most perfect books in
--c4ac4da924461ca45d3cbd03ebe2afb9--
.
The issue is: blood7007@mydomain.com.
They are using as a web browser and when asked if they would like a follow-up they said blood7007@mydomain.com.
Their email address is blood7007@mydomain.com.
All of the emails are also blank carbon copying to the same address, the aol one as listed above.
So, I'm wondering if anyone can tell me how and why these are sent, if it's a security issue, etc... and what I should have in place to prevent it, if it's possible.
Source: http://community.livejournal.com/php/446812.html