Exploits/malicious scripting attributes aren't allowed.
"); } elseif (preg_match($profanity, $val) || preg_match($spamwords, $val)) { exit("That kind of language is not allowed through our form.
"); } } $show_form = true; $error_msg = NULL; if (isset($c['submit'])) { if (empty($c['name']) || empty($c['email']) || empty($c['comments'])) { $error_msg .= "Name, e-mail and comments are required fields. \n"; } elseif (strlen($c['name']) > 15) { $error_msg .= "The name field is limited at 15 characters. Your first name or nickname will do! \n"; } elseif (!ereg("^[A-Za-z' -]", $c['name'])) { $error_msg .= "The name field must not contain special characters. \n"; } elseif (!ereg("^[_a-z0-9-]+(\.[_a-z0-9-]+)*@[a-z0-9-]+(\.[a-z0-9-]+)*(\.[a-z]{2,6})$",strtolower($c['email']))) { $error_msg .= "That is not a valid e-mail address. \n"; } if ($error_msg == NULL) { $show_form = false; if (!empty($c['url']) && !ereg("^(http|https)", $c['url'])) { $c['url'] = "http://" . $c['url']; } $subject = "Automatic Form Email"; $message = "You received this e-mail message through your website: \n\n"; foreach ($c as $key => $val) { $message .= ucwords($key) . ": $val \n"; } $message .= "IP: {$_SERVER['REMOTE_ADDR']} \n"; $message .= "Browser: {$_SERVER['HTTP_USER_AGENT']}"; if (strstr($_SERVER['SERVER_SOFTWARE'], "Win")) { $headers = "From: YOUR-EMAIL@MAIL.COM \n"; $headers .= "Reply-To: {$c['email']}"; } else { $headers = "From: YOUR WEBSITEYour mail was successfully sent.
"; } else { echo "Your mail could not be sent this time.
"; } } } if (!isset($c['submit']) || $show_form == true) { function get_data($var) { global $c; if (isset($c[$var])) { echo $c[$var]; } } if ($error_msg != NULL) { echo "ERROR:
";
echo nl2br($error_msg) . "