Jul 26, 2008

Bcc Exploit In My Programming?
Free Web Hosting, No Ads > CONTRIBUTE > Computers > Programming Languages > PHP Programming

free web hosting

Bcc Exploit In My Programming?

Albus Dumbledore
May 20 2007, 01:56 AM
Just a couple minutes ago i got an e-mail from a web developer in San Diego and apparently he received a large amount of spam e-mail from my websites contact forum because spammers found something called a BCC Exploit in my programing and are using my script to re-direct mail messages through my server to peoples e-mails.

now i have no idea what this means, but i suppose i need to stop it. How so? Can you suggest a more secure contact form script?

Reply

jlhaslip
May 20 2007, 02:12 AM
try this one : http://www.dagondesign.com/articles/secure...-mailer-script/

works as a standalone or embedded in your site pages. excellent script.

Reply

Albus Dumbledore
May 20 2007, 03:10 AM
i went through and looked at it, and it looks way to confusing for me...

do you have a more noobish one? one that just acts as the script for sending it and i can make my own form to use instead of having it in the file.

if anyone else has any suggestions as to a new contact form i can use, please send it to me.

Reply

jlhaslip
May 20 2007, 04:46 AM
Someone is using javascript to access your mail form by injecting email addresses into the Bcc header of the mail() function. Test for the injection and void the action by using php to check for the header prior to sending the mail.

Here is a function to void the string if it contains the injection: http://www.dmcinsights.com/phorum/read.php?6,28810

Reply


Got an Opinion! Express your Views! (no registration):-
Add your Reply/ Opinion/ Views/ Comments/ Suggestion/ Questions/ Queries etc.
Posts with decent grammar & English will be accepted and please refrain from profanities.
For asking a Question, We recommend you to sign-up (for free) so that you can track the topic easily.

Nature of your Post*: Opinion/ Reply/ Comments
Question/Query
Feedback to us.
       
Name   Email
Title/Question*

(Maximum characters: 10,000)
You have characters left.
Confirm Code:

Similar Topics

Keywords : bcc exploit programming

  1. What Is A T_string? - Please help! I'm new at PHP Programming (13)
    I'm new at PHP, and I looked for a while on here, and found some stuff I was looking for about
    form processing, and sending E-Mail through PHP. However, the script I just created won't work.
    I get the following error: Parse error: parse error, unexpected T_STRING in
    /home/hamtaro/public_html/send_feedback.php on line 9 Exactly what is a T_STRING? If I need to post
    my code, I will....
  2. Php And Mysql Programming - anyone knows a code for mysql and php (2)
  3. Programming Competition Work. - Final stage. (2)
    Well for the past month or so I have been working on a Programming Competition project in AP
    Computer Science. Some may know I am quite fancy with graphics and HTML but yes, I do program too.
    But man, even though I am decent at it, it bores the crap out of me. Well being the project leader I
    do most all of the work and I just use the two other members for support and error testing. We
    receive a packet with our project problem in it. Make a fully functional support site for a company.
    Of course with some other more little details but honestly since we are in the advance...
  4. The Artists Tutorials :mysql Basic Commands - The Artists is an online programming unit and gfx designing clan. (0)
    Let's Talk about basic mysql commands used in php. I will now show you a list of the most common
    MySQL FUNCTIONS : QUOTE mysql_connect(MySQL server name,username,password) - opens a connection
    to a MySQL server. mysql_select_db(database name,connection id) - selects a database residing on
    the MySQL server. The database name parameter referes to an active database on the MySQL server that
    was opened with the mysql_connect function. The connection identifier is a reference to the current
    MySQL connection. mysql_query(sql query) - sends a query to the currently ac...
  5. Ipetsite Related Programming Help Needed - iPetSite screwed me over (0)
    Ok so i you are anyone here who would like to hlp me with these files, please pm me your email. Here
    is what i need help with: Replacement of lost files Repair of corrupt files Configuring said files
    Help with setting up the site If you can help me, please let me know. If you would like to be an
    admin on my site, also let me know. Just I request that you don't post here unless you plan or
    intend to help some how....
  6. Need Help - need help in programming... (1)
    i donīt know why the debugger says, that this script has an error: function menuelink($link,
    $liname, $liname2, $tdcolor) { echo " \n"; echo " \n"; echo "  
    $liname2 \n"; echo " \n"; } function menueub($ubname, $tdcolor2) {
    echo " \n"; echo " \n"; echo " > $ubname \n"; echo " \n"; } echo
    " \n"; echo " \n"; echo " \n"; menueub("Main", "#407CBF"); menuelink("index.php",
    "Home", "Home", "#54A3E2"); menuelink("index.php", "Home", "Home", "#54A3E2"); menueli...
  7. I don't use notepad for my php programming anymore - I use Crimson Editor (16)
    I got it free on a MicroMart CD, but i'm sure you could find it on download.com It's a
    great alternative....



Looking for bcc, exploit, programming,

Searching Video's for bcc, exploit, programming,
advertisement



Bcc Exploit In My Programming?



 

 

 

 

ADD REPLY / Got an Opinion! Remove these ADs! RAPID SEARCH! Free Web Hosting [X]
Express your Opinions, Thoughts or Contribute more info. to help others.
Ask your Doubts & Queries to get answers, So that "Together We can help others!" 		Register FREE for AD-FREE forum, Create your own topics, Ask Questions, track topics, setup subscriptions & notifications and Get a Free Website w/ Email and FTP.
500MB Space *No Ads*, CPanel, FTP, PHP, MySQL, EMails - 100% FREE