Technical Support Forums

Free, outstanding support from WebAssist and your colleagues

› WebAssist Forums › Data Bridge › Universal Email › Hackers somehow using mail_php.php

Hackers somehow using mail_php.php

Thread began 9/03/2017 6:21 pm by Steve | Last modified 9/22/2017 10:44 am by Steve | 1444 views | 11 replies

9/05/2017 12:05 pmRay BorduinWebAssist

I don't see any server validation code on the CAPTCHA. It would be easy to create a page that posts to this one that would send an email. You really need to validate the CAPTCHA server side for it to do much good.

I'd make sure to validate your CAPTCHA on the server. That would probably stop the problem. If not, the next step might be to log all of the $_SERVER[] variables from the spammer to see if it might contain more details you can use to catch and block them.

Did this help? Tips are appreciated...

Build websites with a little help from your friends

Your friends over here at WebAssist! These Dreamweaver extensions will assist you in building unlimited, custom websites.

Build websites from already-built web applications

These out-of-the-box solutions provide you proven, tested applications that can be up and running now. Build a store, a gallery, or a web-based email solution.