Hi there!
I’m currently building my first website from the ground up for my business, and I’d like to add a contact form for customers to contact me. I have a framework that I’ve been using to help with certain things; it comes with a form to mail script. When I use the script, the submit button on my form is correctly directed to the script, but all it does is give me a blank page; it should go to a thank you page, “thanks.html”.
Here is the form:
[code]
<li>
<label for="name"><em class="required">*</em> Name</label>
<input type="text" name="name" id="name" class="required" />
</li>
<li>
<label for="email"><em class="required">*</em> Email</label>
<input type="text" name="email" id="email" class="required" />
</li>
<li>
<label for="phone">Phone</label>
<input type="text" name="phone" id="phone" />
</li>
<li>
<label for="message"><em class="required">*</em> Message</label>
<textarea name="message" id="message" class="required" ></textarea>
</li>
<li class="buttons submit">
<button type="submit">Send Message</button>
</li>
</ol>
</form> [/code]
Here is the PHP script (E-mail and Website taken out):
[php]<?php
// This work is licensed under the MIT License - http://www.opensource.org/licenses/mit-license.php
// OPTIONS - PLEASE CONFIGURE THESE BEFORE USE!
$yourEmail = ""; // the email address you wish to receive these mails through
$yourWebsite = ""; // the name of your website
$thanksPage = 'thanks.html'; // URL to 'thanks for sending mail' page; leave empty to keep message on the same page
$maxPoints = 4; // max points a person can hit before it refuses to submit - recommend 4
// — DO NOT EDIT BELOW HERE -----------------------
$error_msg = null;
$result = null;
function isBot() {
$bots = array(“Indy”, “Blaiz”, “Java”, “libwww-perl”, “Python”, “OutfoxBot”, “User-Agent”, “PycURL”, “AlphaServer”, “T8Abot”, “Syntryx”, “WinHttp”, “WebBandit”, “nicebot”);
$isBot = false;
foreach ($bots as $bot)
if (strpos($_SERVER['HTTP_USER_AGENT'], $bot) !== false)
$isBot = true;
if (empty($_SERVER['HTTP_USER_AGENT']) || $_SERVER['HTTP_USER_AGENT'] == " ")
$isBot = true;
exit("Bots not allowed.</p>");
}
if ($_SERVER[‘REQUEST_METHOD’] == “POST”) {
function clean($data) {
$data = trim(stripslashes(strip_tags($data)));
return $data;
}
$points = (int)0;
$badwords = array("redacted");
foreach ($badwords as $word)
if (strpos($_POST['comments'], $word) !== false)
$points += 2;
foreach ($exploits as $exploit)
if (strpos($_POST['comments'], $exploit) !== false)
$points += 2;
if (strpos($_POST['comments'], "http://") !== false || strpos($_POST['comments'], "www.") !== false)
$points += 2;
if (isset($_POST['nojs']))
$points += 1;
if (preg_match("/(<.*>)/i", $_POST['comments']))
$points += 2;
if (strlen($_POST['name']) < 3)
$points += 1;
if (strlen($_POST['comments']) < 15 || strlen($_POST['comments'] > 1500))
$points += 2;
foreach ($_POST as $key => $value)
$_POST[$key] = trim($value);
if (empty($_POST['name']) || empty($_POST['email']) || empty($_POST['comments'])) {
$error_msg .= "Name, e-mail and comments are required fields. \n";
} elseif (strlen($_POST['name']) > 15) {
$error_msg .= "The name field is limited at 15 characters. Your first name or nickname will do! \n";
} elseif (!preg_match("/^[a-zA-Z-'\s]*$/", stripslashes($_POST['name']))) {
$error_msg .= "The name field must not contain special characters. \n";
} elseif (!preg_match('/^([a-z0-9])(([-a-z0-9._])*([a-z0-9]))*\@([a-z0-9])(([a-z0-9-])*([a-z0-9]))+' . '(\.([a-z0-9])([-a-z0-9_-])?([a-z0-9])+)+$/i', strtolower($_POST['email']))) {
$error_msg .= "That is not a valid e-mail address. \n";
} elseif (!empty($_POST['url']) && !preg_match('/^(http|https):\/\/(([A-Z0-9][A-Z0-9_-]*)(\.[A-Z0-9][A-Z0-9_-]*)+)(:(\d+))?\/?/i', $_POST['url']))
$error_msg .= "Invalid website url.";
if ($error_msg == NULL && $points <= $maxPoints) {
$subject = "Automatic Form Email";
$message = "You received this e-mail message through your website: \n\n";
foreach ($_POST as $key => $val) {
$message .= ucwords($key) . ": " . clean($val) . "\r\n";
}
$message .= 'IP: '.$_SERVER['REMOTE_ADDR']."\r\n";
$message .= 'Browser: '.$_SERVER['HTTP_USER_AGENT']."\r\n";
$message .= 'Points: '.$points;
if (strstr($_SERVER['SERVER_SOFTWARE'], "Win")) {
$headers = "From: $yourEmail \r\n";
$headers .= "Reply-To: {$_POST['email']}";
} else {
$headers = "From: $yourWebsite <$yourEmail> \r\n";
$headers .= "Reply-To: {$_POST['email']}";
}
if (mail($yourEmail,$subject,$message,$headers)) {
if (!empty($thanksPage)) {
header("Location: $thanksPage");
exit;
} else {
$result = 'Your mail was successfully sent.';
}
} else {
$error_msg = 'Your mail could not be sent this time.';
}
} else {
if (empty($error_msg))
$error_msg = 'Your mail looks too much like spam, and could not be sent this time. ['.$points.']';
}
}
function get_data($var) {
if (isset($_POST[$var]))
echo htmlspecialchars($_POST[$var]);
}
?>
[/php]
Is there something blatantly obvious that’s wrong? Does anyone know what I can do?
Thanks