CMS Made Simple Forums

Content management as it is meant to be
https://forum.cmsmadesimple.org/

Feedbaclform 0.9.12 hacked???

https://forum.cmsmadesimple.org/viewtopic.php?t=5625

Page 1 of 1

Feedbaclform 0.9.12 hacked???

Posted: Wed Jul 12, 2006 5:59 am
by Gregor
Hi All,

Last night I got 46 e-mails via the feedbackform of my website www.uisge-beatha.eu Although the text varies, I got the following e-mail:

Code: Select all

Form Name: Reactieformulier
Submission Date: Wed, 12 Jul 2006 07:56:50 +0200
Submission Host: www.uisge-beatha.eu
Submission Source: 201.0.4.148
-------------------------------
xxxxxxxxxxxxxxxxxxxxxxxx
xxxxxxxxxxxxxxxxxxxxxxxx
Does anyone got spam via the feedbackform? Suggestion to create an 'unwanted words' list that is manageble from the Admin-menu?

If anyone wants to test or so, for the time being I disabled the possiblity to send e-mails from the site.

Greetz,
Gregor

Re: Feedbaclform 0.9.12 hacked???

Posted: Wed Jul 12, 2006 5:13 pm
by sjg
You scared me with that title! I had visions of people's machines being taken over...

I'm entering "Captcha" as a feature request for the FormBuilder, which could potentially cut down on this kind of problem.

Also, in FormBuilder, you can require an email validation, which would also presumably cut down on spam (or at least give you an actual working email address that the spammers use/used).

Re: Feedbaclform 0.9.12 hacked???

Posted: Wed Jul 12, 2006 8:44 pm
by Gregor
Not meant to scare you. At least I got attention :)

I have every field defined as required, including the e-mail check. This is why I find it pretty scarry.

Your solution sounds good. Looking forward to his feature.
All times are UTC
Page 1 of 1

Powered by phpBB® Forum Software © phpBB Limited