11 replies
Hi, i just received an email via contact form on my website.It is something like this:

First Name: juxefjpcc
subject: gxLkyhLgBcWkWoeRSh
Email: wywvew@llaxlr.com
Comments: yzZQIt <a =\"http://ebhupsjnriud.com/\">ebhupsjnriud</a>, wqocemyudkqb, [link=http://bucmricazvnd.com/]bucmricazvnd[/link], http://cwufnmrpjuuj.com/


It sounds to me a Email attack.Can anyone tell me what exactly it is and if it is some sort of hacking thing than how can i prevent it?

Thanks in advance.
#email #injection
  • Profile picture of the author OldLodgeSkins
    It's just some idiot (or stupid bot...) who tried to post spam on your website. Saw a from, filled the form, submitted the form... Nothing more.
    Is your contact form protected by a captcha and / or bot trap?
    Signature
    Do you use Facebook ? Then you can make money just by inviting people to a Facebook group ! It's called the Instant Income System. How cool is that?
    {{ DiscussionBoard.errors[6207443].message }}
  • Profile picture of the author OldLodgeSkins
    You're welcome.
    Signature
    Do you use Facebook ? Then you can make money just by inviting people to a Facebook group ! It's called the Instant Income System. How cool is that?
    {{ DiscussionBoard.errors[6207593].message }}
  • Profile picture of the author mmrumii
    That's sound little bit dangerous to me,
    I gonna make my site more secured. Thanks for your information.
    {{ DiscussionBoard.errors[6234655].message }}
    • Profile picture of the author K Meier
      Originally Posted by mmrumii View Post

      That's sound little bit dangerous to me,
      I gonna make my site more secured. Thanks for your information.
      No offense, but if this sounds dangerous to you, then you would need to look into basic html.
      There is absolutely no dangerous code here. It's a simply html link and bbcode link, nothing more.
      {{ DiscussionBoard.errors[6236665].message }}
  • Profile picture of the author flippingpaddies
    Just spam, me thinks.
    {{ DiscussionBoard.errors[6237405].message }}
  • Profile picture of the author flippingpaddies
    In fact, I get them quite often on my contact form.

    You could put a captcha on there if you'd like (but they're annoying for the user), or instead put a hidden text field. Bots will usually fill it out, humans won't because they can't see it. Then you know when it's a real human user and when it's a bot.
    {{ DiscussionBoard.errors[6237408].message }}
  • Profile picture of the author ivankristianto
    Just use contact-form-7 if you are using wordpresss. if not please make sure you plant cookies, and check cookies before sending an email from the contact form.
    using captcha is also another solution. but you need third party libraries to make that.
    {{ DiscussionBoard.errors[6246469].message }}
  • Profile picture of the author alen12345
    There are a lot of ways to send anonymous emails, some use it to mass mail, some use it to spoof identity, and some (a few) use it to send email anonymously. Usually a web mailform using the mail() function generates emails containing headers with the originating IP of the server it's running on. Therefore the mailform acts as a SMTP proxy. The input fields of the form may vary, but it is common to specify a mailform that gives you control over the subject, the message, and the sender's email address.
    {{ DiscussionBoard.errors[6248236].message }}
  • Profile picture of the author shantanu
    Try to secure your admin panel along with the hosting panel too. Take care of your hosting too coz now the hackers are planning to take over your hosting in some countries, so catcha is the best option or avoid spams too use private mailbox.
    {{ DiscussionBoard.errors[6250743].message }}
  • Profile picture of the author Abijahkate
    Can't get my php form email results to display radios checkboxes!?
    {{ DiscussionBoard.errors[6254319].message }}

Trending Topics