rocknbil - 6:30 pm on Sep 29, 2011 (gmt 0)

Suppose I could do this.

<input type="text" name="email" value="spammer1@example.com,spammer2@example.com,spammer3@example.com,spammer4@example.com">

I've just used your form to spam. Multiply that by 1000. Of course, a real hack wouldn't come from your form, and it woudlnt' be that simple, it would come from a command line. There's plenty they could do . . .