Regardless if mail() takes precautions you should also
check input prior to trusting it.
Note: If mail does or doesn't if it changes in the future you
are covered if you always check.
I would suggest a simple addslashes and the (shell/sendmail)
will be fine OR better still do an array with a ca
Hi,
If I'm taking an URL as user input from in a form, and then emailing
that URL back to them as part of a larger message, how do I ensure that
no-one sends anything strange to run shell commands through sendmail?
Could anyone confirm that mail() or even sendmail does take precautions
against
2 matches
Mail list logo
