marmite Posted May 21, 2007 Share Posted May 21, 2007 Hello, May seem a silly question, but hey ho: do I need to worry about SQL injection/any form of attack on this page: http://www.cardsunlimited.com/contact.php which just sends a mailto ? I am assuming not. Also, I know this is cheeky but I haven't been able to sort this javascript problem for over a week, so if you're reading this and you know some JS, could you take a look (it's very basic and I'd be very grateful!)- http://www.phpfreaks.com/forums/index.php/topic,141303.0.html Emma Quote Link to comment https://forums.phpfreaks.com/topic/52346-solved-sql-injection-concerns-mailtos/ Share on other sites More sharing options...
kenrbnsn Posted May 21, 2007 Share Posted May 21, 2007 If the script doesn't do any MySQL commands then you don't have to worry about sql injections. What you do have to worry about are email header injections. Read this article for more information. Ken Quote Link to comment https://forums.phpfreaks.com/topic/52346-solved-sql-injection-concerns-mailtos/#findComment-258304 Share on other sites More sharing options...
marmite Posted May 21, 2007 Author Share Posted May 21, 2007 Thanks. That's a great article. Quote Link to comment https://forums.phpfreaks.com/topic/52346-solved-sql-injection-concerns-mailtos/#findComment-258323 Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.