WordPress.org

Support

Support » Plugins and Hacks » [Resolved] Possible email injection attempt on 3.1.7

[Resolved] Possible email injection attempt on 3.1.7

  • Hello,

    I have updated to fscontact form 3.1.7 and am getting the message
    “illegal characters in POST. Possible email injection attempt” when submitting an email. This only seems to happen on messages where enter has been pressed to create new lines in the text field. On single line messages it was not happening.

    I have reinstalled 3.1.6.3 and it is working fine again.

    Thanks.

    http://wordpress.org/extend/plugins/si-contact-form/

Viewing 5 replies - 1 through 5 (of 5 total)
  • Plugin Author Mike Challis

    @mikechallis

    Thanks for reporting. Will be fixed right away

    Mike

    Brilliant, thanks very much.

    Plugin Author Mike Challis

    @mikechallis

    Version 3.1.7.1 or greater should fix it

    = 3.1.7.1 =
    – (18 Jan 2013) – fix a few critical errors such as “illegal characters in POST”, Notice: Undefined index si-contact-form.php on line 1016, and users cannot send the form a 2nd time.

    i have the same problem till now !

    Illegal characters in POST. Possible email injection attempt

    Plugin Author Mike Challis

    @mikechallis

    There are forbidden characters, your email content triggered them.
    You can see what they are on line 1222 of class-fscf-process.php

Viewing 5 replies - 1 through 5 (of 5 total)
  • The topic ‘[Resolved] Possible email injection attempt on 3.1.7’ is closed to new replies.