Jump to content
  • Checkout
  • Login
  • Get in touch

osCommerce

The e-commerce.

Contact Us form is possible to be hacked?


toptiara

Recommended Posts

Posted

This is from my hosting company

 

"A number of users have recently had their accounts suspended after contact forms were hacked.

 

If you have a contact form please ensure that it is secure and that it includes input validation designed to avoid email header injection.

 

A useful tutorial can be found at:

 

http://www.jellyandcustard.com/2006/02/24/...jection-in-php/ We regret any accounts abused as a result of poorly coded contact scripts will be suspended and may be terminated without prior warning."

 

I have no idea where I can change the code for this. Ive looked in contact_us.php in \includes\languages\english but that doesnt have the code within... Anyone help me please?

 

Thanks

Hand made jewellery and tiaras on our website

 

Please bear with me. Im an osC noobie!

Posted
This is from my hosting company

 

"A number of users have recently had their accounts suspended after contact forms were hacked.

 

If you have a contact form please ensure that it is secure and that it includes input validation designed to avoid email header injection.

 

A useful tutorial can be found at:

 

http://www.jellyandcustard.com/2006/02/24/...jection-in-php/ We regret any accounts abused as a result of poorly coded contact scripts will be suspended and may be terminated without prior warning."

 

I have no idea where I can change the code for this. Ive looked in contact_us.php in \includes\languages\english but that doesnt have the code within... Anyone help me please?

 

Thanks

 

 

You might want to try the fix found

here

The Knowledge Base is a wonderful thing.

Do you have a problem? Have you checked out Common Problems?

There are many very useful osC Contributions

Are you having trouble with a installed contribution? Have you checked out the support thread found Here

BACKUP BACKUP BACKUP!!! You did backup, right??

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...