Home Custom Tags Custom Functions Code Snippets Contact

Eddie Hall Test Search our Library   Keyword:       Links   fm_emailinjection Click to Download   Description Email injection is a security vulnerability that can occur in internet applications that are used to send email messages. When a form is added to a webpage that submits data to a web application, a malicious user can potentially exploit the MIME format to append additional information to the message being sent, such as a new list of recipients or a completely different message body.   Usage This new function will strip out any malicious string from any data contained within it. Simply wrap this function around any variables used within cfmail (to, cc, bcc, from, subject or body).

Contact Us Tel Fax (+44) 01206 381881 (+44) 08701 372317   Email webteam@datapartners.co.uk   Datapartners 11 Firs Chase West Mersea COLCHESTER Essex CO5 8NG               DP Products DP Services DP Portals dp.webshop dp.mailermatic dp.evoicing Pro dp.clickmachine cms dp.e-cram dp.evoicing Lite Domain Names Web Hosting Search Engines Web Design Coldfusion SQL Database Web4Sport Blah Wagon Roughmix TideText MBand Scalemodeller

© 2008 Datapartners. All Rights Reserved.   Registered in England and Wales No: 4569212. Registered Office 82C East Hill : COLCHESTER : Essex : CO1 2QW VAT Registration Number: GB 802 1326 83. Trading From: 11 Firs Chase : West Mersea : COLCHESTER : Essex : C05 8NG T: +44(0)1206 381881 F: +44(0)8701 372317 E: webteam@datapartners.co.uk W: www.datapartners.co.uk