]*?>.*?@si', // Strip out javascript '@]*?>.*?@siU', // Strip style tags properly '@<[\/\!]*?[^<>]*?>@si', // Strip out HTML tags '@@' // Strip multi-line comments including CDATA ); $text = preg_replace($search, '', $tring); return $text; } function check_email_address($email) { // First, we check that there's one @ symbol, // and that the lengths are right. if (!ereg("^[^@]{1,64}@[^@]{1,255}$", $email)) { // Email invalid because wrong number of characters // in one section or wrong number of @ symbols. return false; } // Split it into sections to make life easier $email_array = explode("@", $email); $local_array = explode(".", $email_array[0]); for ($i = 0; $i < sizeof($local_array); $i++) { if (!ereg("^(([A-Za-z0-9!#$%&'*+/=?^_`{|}~-][A-Za-z0-9!#$%& ?'*+/=?^_`{|}~\.-]{0,63})|(\"[^(\\|\")]{0,62}\"))$", $local_array[$i])) { return false; } } // Check if domain is IP. If not, // it should be valid domain name if (!ereg("^\[?[0-9\.]+\]?$", $email_array[1])) { $domain_array = explode(".", $email_array[1]); if (sizeof($domain_array) < 2) { return false; // Not enough parts to domain } for ($i = 0; $i < sizeof($domain_array); $i++) { if (!ereg("^(([A-Za-z0-9][A-Za-z0-9-]{0,61}[A-Za-z0-9])| ?([A-Za-z0-9]+))$", $domain_array[$i])) { return false; } } } return true; } foreach($_POST as $key => $value){ ${$key} = mysql_real_escape_string(stripMe($value)); } if(check_email_address($email)!=true){ $email = 'bademail'; } /* foreach($_POST as $key => $value){ echo $key.' = '.${$key}."
"; } */ include 'mysql.php'; if (!$bridge) { die('Could not connect: ' . mysql_error()); } $query = "INSERT INTO request_form (id,date,name,email,phone1,phone2,phone21,phone22,occupation,referral,keyword_ref,admin_email,uri) VALUES ('',NOW(),'$name','$email','$phone1','$phone2','$phone21','$phone22','$occupation','Newsletter Request','$keyword_ref', '$mailto', '$uri')"; mysql_select_db('nli_db', $bridge); if (!mysql_query($query,$bridge)) { die('Error: ' . mysql_error()); } $mailsubject = 'Newsletter Request'; $mailbody = 'Newsletter Request: '; $mailbody .= 'Email: '.$email." "; $mailbody .= 'URI: '.$uri." "; $egrabber = "egrabber@nlionline.com"; mail($egrabber,$mailsubject,$mailbody,'From: '.$email."\r\n".'Reply-To: '.$email."\r\n")or die('Mail could not be sent!'); mysql_close($bridge); header('Location:http://www.nationallaserinstitute.com/successfulmessage_news.php'); ?>