P
poojalooba_cow
Guest
I just finished writing a php mail() function script for a contact form on my website. Being wary of spammers and hackers utilizing badly-coded php mail scripts to achieve ill ends, I added some remove_headers code and some htmlentities replacers. Now the inputs have been sanitized so that spammers/hackers can't do what they want with it, and the form still works great. However, whenever there's weird punctuation it's always replaced with the equivalent URL indicator like %20 or \' or < or > et cetera when there are brackets <> or quotes. ' " Is there some way to parse the lines of text back into something readable and understandable after original formatting has been removed to prevent hacking? Some kind of program or Firefox plugin or php script or something that'll render my messages readable again?
The relevant pages are http://www.poojalooba.com/contact.html where the contact form is and http://www.poojalooba.com/process_form.txt that is the script (I know it's a .txt but I can't link to the .php file because it executes before you can view the source, so this is the code for the php file just formatted into a .txt)
Any help would, of course, be awesome.
The relevant pages are http://www.poojalooba.com/contact.html where the contact form is and http://www.poojalooba.com/process_form.txt that is the script (I know it's a .txt but I can't link to the .php file because it executes before you can view the source, so this is the code for the php file just formatted into a .txt)
Any help would, of course, be awesome.