that works fine thanks.
Now for what to do with the variables (new post "scanning for non alpha

"Bigdog" <[EMAIL PROTECTED]> wrote in message
> Does this not work...
> <a href=contactus.php?email=director&subject=job enquiry>
> On Thu, 2002-11-14 at 14:11, CJ wrote:
> > I have a "contact us" php script on my site that allows users to email
> > direct from the webiste.  I want to be able to pass the to address and
> > subject line to the script so I can call teh web page from elsewhere on
> > site and have it automatically choose the correct email address and
> > line.
> >
> > EG instad of using <a href=mailto:joe@;> which requires
> > to have an email client set up on the machine I want to link to
> > <a href=contactus.php?email=director subject=job enquiry>
> > The script already handles the email=director by setting a default entry
> > a drop down form but I can't get it to separate the first and second
> > variables in the URL.
> >
> > Also is this a big security risk as I will be echoing the 2nd variable
> > the contents of a form field.  Would it be possible for someone to type
> > the URL with HTML/php in it that would make a mess of everything?  How
can I
> > protect against this?  Would it be sufficient to just pase the 2nd
> > for non alphabetic characters and remove them?
> --
> .: B i g D o g :.

PHP General Mailing List (
To unsubscribe, visit:

Reply via email to