I’ve been this script (and others very similar) for some time now but my host has just suspended the site because of spam apparently. Can anyone see any obvious security issues with it?
Also if you open the page, with NO strings posted, as far as I can tell (read through quickly) it will still send a 'default' mail with: [CODE]# Email to Form Owner
$emailBody = "A form has just been submitted:n" . "n" . "Name: $FTGusern" . "Email: $FTGemailn" . "Telephone: $FTGtelephonen" . "Address: $FTGaddressn" . "Wedding: $FTGweddingn" . "Commercial: $FTGcommercialn" . "Lifestyle: $FTGlifestylen" . "Brochure: $FTGbrochuren" . "How Did You Hear About Us?: $FTGhown" . "Message: $FTGmessagen" . "n" . "--n" . "This is for information only:n" . "" . date('Y-m-d H:i:s') . "n" . "" . $_SERVER['REMOTE_ADDR'] . "n" . "" . $_SERVER['HTTP_USER_AGENT'] . "n" . "n" . "";