I'm trying to break my contact form. I'm trying to figure out what people could type in so that it creates a problem when processing the code.
They only problem I've come across so far that breaks the form is when you type things in quotes.
1. When you type things in double quotes, it fails for the email address, though I've heard having double quotes in your address are valid, and none of the other fields except that message is reposted.
2. When you type things in single quotes, it fails for the email address, don't know if it's valid either way, and all of it is reposted.
I know this is kind of weird/confusing. Can anyone offer any suggestions why it doesn't repost when using double quotes? I want it to still repost what they typed even if something fails the conditions.
Relevant code (hopefully):
<?php
if (isset($_POST['Submit']) && $_POST['Submit'] == "Submit")
{
foreach ($_POST as $key => $val)
{
$_POST[$key] = stripslashes($val);
}
$to = "address@domain.tld"; // send the form here
$name = $_POST['Name'];
$email = $_POST['Email'];
$subject = $_POST['Subject'];
$message = $_POST['Message'];
$message_length = strlen($message);
$errors .= (empty($name)) ? "<br /><span class=\"error\">You have to type your name. Who are you?</span>" : FALSE;
$errors .= (empty($email)||!preg_match("/^\w+([-+.]\w+)*@\w+([-.]\w+)*\.\w+([-.]\w+)*(([,]|[,])\s*\w+([-+.]\w+)*@\w+([-.]\w+)*\.\w+([-.]\w+)*)*$/", $email)) ? "<br /><span class=\"error\">You have to type your email address so I can reply if I need to. Make sure you didn't try to cheat and make up one.</span>" : FALSE;
$errors .= (empty($subject)) ? "<br /><span class=\"error\">You have to type a subject. What is your message about?</span>" : FALSE;
$errors .= (empty($message)||$message_length>255) ? "<br /><span class=\"error\">You have to type your message. Make sure you use less than 255 characters. You are currently using $message_length.</span>" : FALSE;
if (!$errors)
{
$msg = "Name: $name\nEmail: $email\nMessage: $message";
$headers .= "From: " . $name . "<" . $email . ">\r\n";
$subject = "CH[DOT]COM - ".$subject;
ini_set(sendmail_from, $email);
$bool = mail($to, $subject, $msg, $headers);
ini_restore(sendmail_from);
if ($bool)
{
header("Location: /contact/thankyou.php");
exit();
} else
{
die("Something happened that wasn't supposed to. Please send an
email to address@domain.tld and tell me that you got
this message.");
}
}
}
?><form action="
<?php echo $_SERVER['PHP_SELF']; ?>" method="post">
<?php echo ($errors)
? "<p>All fields are required. Max length on all fields is 255 characters. $error</p>"
: "<p>All fields are required. Max length on all fields is 255 characters.</p>"; ?> <label for="Name" id="Name">Name:</label>
<input type="text" name="Name" value="
<?php echo ($errors) ? $name : ""; ?>" maxlength="255" />
<label for="Email" id="Email">Email:</label>
<input type="text" name="Email" value="
<?php echo ($errors) ? $email : ""; ?>" maxlength="255" />
<label for="Subject" id="Subject">Subject:</label>
<input type="text" name="Subject" value="
<?php echo ($errors) ? $subject : ""; ?>" maxlength="255" />
<label for="Message" id="Message">Message:</label>
<textarea name="Message" rows="20" cols="20">
<?php echo ($errors) ? $message : ""; ?></textarea>
<div class="clear"></div>
<label for="Buttons" id="Buttons">Done?</label>
<input class="submit-button" type="submit" name="Submit" value="Submit" />
<input class="reset-button" type="reset" name="Reset" value="Reset" />
</form>
I printed the $_POST array. Here's a sample output:
Array ( [Name] => "Charlie Holder" [Email] => 'me'@charlieholder.com [Subject] => 'Hi!' [Message] => "Hello World!" [Submit] => Submit )
