What are the common pitfalls when sending form data via PHP mail and how can they be avoided?

Common pitfalls when sending form data via PHP mail include not properly sanitizing user input, not validating email addresses, and not setting proper headers for the email. To avoid these pitfalls, make sure to sanitize and validate user input, use the filter_var function to validate email addresses, and set the necessary headers for the email.

// Sanitize and validate user input
$name = filter_var($_POST[&#039;name&#039;], FILTER_SANITIZE_STRING);
$email = filter_var($_POST[&#039;email&#039;], FILTER_VALIDATE_EMAIL);
$message = filter_var($_POST[&#039;message&#039;], FILTER_SANITIZE_STRING);

// Check if email is valid
if (!$email) {
    echo &#039;Invalid email address&#039;;
    exit;
}

// Set headers for the email
$headers = &#039;From: &#039; . $email . &quot;\r\n&quot; .
    &#039;Reply-To: &#039; . $email . &quot;\r\n&quot; .
    &#039;X-Mailer: PHP/&#039; . phpversion();

// Send the email
$mailSent = mail(&#039;recipient@example.com&#039;, &#039;Contact Form Submission&#039;, $message, $headers);

if ($mailSent) {
    echo &#039;Email sent successfully&#039;;
} else {
    echo &#039;Failed to send email&#039;;
}

Keywords

PHP mail function form data email headers spam filters validation.

What are the common pitfalls when sending form data via PHP mail and how can they be avoided?

Keywords

Related Questions