I was seeing some weird html and it was 'encrypted'. http://www somedomain com/cgi-bin/mail.pl?mail_to=%675%56565%5555%%%etc.... It was entered on one of my submission forms, and I wonder if some type of spam generation tool. Also, if so, is there a way to filter this content out, so no one can accidentally click on it? Thank you, tom
always html decode any passed in variables. Essentially, make your passed in data safe and you should be alright. Also make sure to kill any Email Header variables like To: From: CC: Bcc: Multi-Type, etc... People use these to Hijack forms these days