Hello Forum Members, New to PHP, I've had problems finding the problem with a script developed to process new user registrations at a client website. The script is intended to accomplish the following: 1. New user registers for access to member section of site. 2. Activation email is sent to new registrant. 3. A copy of the new registration is sent to 2 owners of the client site. Numbers 1 and 2 above work perfectly. Number 3 does not work. The owners of the site are not receiving messages that someone has signed up. I've attached a copy of the script, substituting the client domain name with "clientdomainname.com" and "client_1@clientdomainname.com" and "client_2@clientdomainname.com". Thank you, themuse
I hope you didn't pay anyone for writing that code, it's insecure. There's nothing stopping a malicious user from adding an evil username (or any other of the fields) which will just drop the entire database etc. (That is if the sql user has the rights to do so)