My form being used to send SPAM?
Posted 03 December 2005 - 02:11 AM
Your site seems to being used to send out spam mail. I will forward you the headers if you will give me a best address to do so. Please fix this as it is causing everyone on this server to have their mail blocked by AOL.
I'm a bit of a newbie so I'm not even sure if thats possible or if he's just spamming me! LOL I know forms can be used to send spam to the email address the form is supposed to send to, but can it be used to send spam elsewhere? I think thats what this guy is trying to say anyway.
I'm using a php script to send the mail. It's sort of long, I'll paste it if someone cares to see the actual script. I'm just wondering if it's possible the PHP script is doing what this guy says it's doing, and if it is, how do I stop it?
Posted 03 December 2005 - 04:23 AM
Someone may have hacked your site however.
Post the code and let's have a look.
Posted 03 December 2005 - 01:26 PM
<?php $myemail = "email@example.com"; $ccx = ""; if(!$visitormail == "" && (!strstr($visitormail,"@") || !strstr($visitormail,".")))
Heh, I think I know what might be doing it. It has the option to carbon copy to the email entered. I should probably take that off, huh?
Posted 03 December 2005 - 02:59 PM
Please see the article on [a href=\"http://www.nyphp.org/phundamentals/email_header_injection.php\" target=\"_blank\"]Email Header Injection Exploit[/a] for ways to fix your script.
Posted 19 March 2006 - 09:20 PM
Anyway, I just wanted to update you on the article that Ken provided a link to.
Toward the bottom of the article you'll find a list of aol names/addresses where your form is being bcc'd to. Here are more aol names/addresses to be on the lookout for.
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users