pepper

Sorry for the late reply but thanks Larry! I will add that code. -Cheers

Hey Jonathon, thanks for your feedback and ideas. The contact form is on a small merchant site rather than a forum but the location of the contact form (www.domain/contact/) is so straightforward that it sounds like an automated bot could find it... i'm leaning towards your theory of it being random spam. I'm not too experienced with web-dev & I thought maybe that that is what MySql injection attack code might look like after it had been stripped of the dangerous code bits by my contact form php code. anyway, I appreciate the feedback Cheers, -Mike

Hi, I built my contact form according to the Effortless E-Commerce book... and every so often I get a contact form submission that looks awfully suspicious (pasted below). My question: Is this someone just messing around or does this look like an attempt hack? Here is the latest one (I've replaced the http with hxxx): Name: fmckfsyxweu Email: mnfvwp@qtjrho.com Comments: 6qX98s <a href="hxxx://tehpytlzdqvo.com/">tehpytlzdqvo</a>, sprpgqkkfcao, [link=hxxx://ivpisofjqddd.com/]ivpisofjqddd[/link], hxxx://utetlvzppzja.com/