[?] Whats wrong with this php form :'(

Forum Moderators: coopster

Message Too Old, No Replies

[?] Whats wrong with this php form :'(

I really don't know why doesn't work

r4bet

5:16 pm on Oct 3, 2009 (gmt 0)

this is my contact form. but when i click send an ERROR happen :(

index.php source:


<form action="mail.php" method="post">
name <input type="text" name="name" size="40">
family <input type="text" name="family" size="40">
phone <input type="text" name="phone" size="40">
address <input type="text" name="address" size="40">
<input type="submit" value="send">
</form>

mail.php source:


<?php
$to="info@example.tld";
$subject="feedback";
$from="visitor@example.tld";
$name=$_POST['name'];
$family=$_POST['family'];
$phone=$_POST['phone'];
$address=$_POST['address'];
$headers = 'MIME-Version: 1.0' . "\r\n";
$headers .= 'Content-type: text/html; charset=utf-8' . "\r\n";
$headers .= 'To: '.$to . "\r\n";
$headers .= 'From: '.$from . "\r\n";
$headers .= 'Reply-To: '.$from . "\r\n";
$sendmail=mail($to, $subject, $name, $family, $phone, $address, $headers);
if ($sendmail)
echo "sent";
else
echo "failed";
?>

please correct it and place here. thank you very much

jd01

5:29 pm on Oct 3, 2009 (gmt 0)

You should be compiling your message, because you have too many parameters in your mail()...

$message=$name."\n".$family."\n".$phone."\n".$address;
$sendmail=mail($to, $subject, $message, $headers);

On another note, it's scary you're not checking your POST variables for security purposes...

Here's one thread on how to do it with some different examples:
[webmasterworld.com...]

I highly recommend you check all POSTed data with a regular expression.