PHP contact form

hibeesmad · 29 Sep 2008 at 21:07

Does anyone have a basic PHP contact form which includes, name, email address and comments?

Thanks.

unwashed potato! · 29 Sep 2008 at 21:37

yeah i do

PHP:

<?php
if ($_POST['formsent'] == "1")
{
  $email = "replace with whatever email address you want the form to go to";
  $subject = $_POST['subject'];
  $youremail = $_POST['replyto'];
  $message = $_POST['message'];
  if(!eregi("^[_a-z0-9-]+(\.[_a-z0-9-]+)*@[a-z0-9-]+(\.[a-z0-9-]+)*(\.[a-z]{2,3})$", $email))
  {
    echo "The e-mail was not valid. Please go back and try again.";
  }
  else
  {
    if($subject == "")
    {
      echo "You must enter a email subject";
    }
    else
    {
      if(!eregi("^[_a-z0-9-]+(\.[_a-z0-9-]+)*@[a-z0-9-]+(\.[a-z0-9-]+)*(\.[a-z]{2,3})$", $youremail))
      {
        echo "Your e-mail was not valid. Please go back and try again.";
      }
      else
      {
        if ($message == "")
        {
          echo "You must enter a message";
        }
        else
        {
          
          $headers = "From: ".$youremail;
          mail($email,$subject,$message,$headers);
          echo "
Thank you, your email has been sent.
            ";
        }
      }
    }
  }
}
else
{
?>

<p>
We would like to hear from you. 
</p>

<br />

<form action="" method="post">
  <p>
    <input type="hidden" name="formsent" value="1" />
    Subject<br />
    <input type="text" name="subject" value="" /><br />
    Email Address<br />
    <input type="text" name="replyto" value="" /><br />
    Message<br />
    <textarea cols="40" rows="10" name="message"></textarea><br />
    <input type="submit" value="Send Email" /><input type="reset" value="Reset" />
  </p>
</form>
<?php
}
?>

not the best form at all but should do the job. just copy and pasted

hibeesmad · 30 Sep 2008 at 17:01

Do you have a guide on how to implement this code?

I'm kind of new to the PHP side of things with Dreaweaver.

Thanks.

Deleted member 77746 · 30 Sep 2008 at 18:50

Give this a go.

Code:

<table width="760" border="0" cellspacing="10" cellpadding="0" align="center">
  <tr>
    <td align="center">

<?php 
if (isset($_POST["op"]) && ($_POST["op"]=="send")) { 

/******** START OF CONFIG SECTION *******/
  $sendto  = "[email protected]";
  $subject = "Website Contact Enquiry";
// Select if you want to check form for standard spam text
  $SpamCheck = "Y"; // Y or N
  $SpamReplaceText = "*content removed*";
// Error message prited if spam form attack found
$SpamErrorMessage = "<p align=\"center\"><font color=\"red\">Malicious code content detected.
</font><br><b>Your IP Number of <b>".getenv("REMOTE_ADDR")."</b> has been logged.</b></p>";
/******** END OF CONFIG SECTION *******/


  $name = $HTTP_POST_VARS['name']; 
  $email = $HTTP_POST_VARS['email']; 
  $message = $HTTP_POST_VARS['message']; 
  $headers = "From: $email\n";
  $headers . "MIME-Version: 1.0\n"
		   . "Content-Transfer-Encoding: 7bit\n"
		   . "Content-type: text/html;  charset = \"iso-8859-1\";\n\n";
if ($SpamCheck == "Y") {		   
// Check for Website URL's in the form input boxes as if we block website URLs from the form,
// then this will stop the spammers wastignt ime sending emails
if (preg_match("/http/i", "$name")) {echo "$SpamErrorMessage"; exit();} 
if (preg_match("/http/i", "$email")) {echo "$SpamErrorMessage"; exit();} 
if (preg_match("/http/i", "$message")) {echo "$SpamErrorMessage"; exit();} 

// Patterm match search to strip out the invalid charcaters, this prevents the mail injection spammer 
  $pattern = '/(;|\||`|>|<|&|^|"|'."\n|\r|'".'|{|}|[|]|\)|\()/i'; // build the pattern match string 
                            
  $name = preg_replace($pattern, "", $name); 
  $email = preg_replace($pattern, "", $email); 
  $message = preg_replace($pattern, "", $message); 

// Check for the injected headers from the spammer attempt 
// This will replace the injection attempt text with the string you have set in the above config section
  $find = array("/bcc\:/i","/Content\-Type\:/i","/cc\:/i","/to\:/i"); 
  $email = preg_replace($find, "$SpamReplaceText", $email); 
  $name = preg_replace($find, "$SpamReplaceText", $name); 
  $message = preg_replace($find, "$SpamReplaceText", $message); 
  
// Check to see if the fields contain any content we want to ban
 if(stristr($name, $SpamReplaceText) !== FALSE) {echo "$SpamErrorMessage"; exit();} 
 if(stristr($message, $SpamReplaceText) !== FALSE) {echo "$SpamErrorMessage"; exit();} 
 
 // Do a check on the send email and subject text
 if(stristr($sendto, $SpamReplaceText) !== FALSE) {echo "$SpamErrorMessage"; exit();} 
 if(stristr($subject, $SpamReplaceText) !== FALSE) {echo "$SpamErrorMessage"; exit();} 
}
// Build the email body text
  $emailcontent = " 
----------------------------------------------------------------------------- 
   WEBSITE CONTACT ENQUIRY
----------------------------------------------------------------------------- 

Name: $name 
Email: $email 
Message: $message 

_______________________________________ 
End of Email 
"; 
// Check the email address enmtered matches the standard email address format
 if (!eregi("^[A-Z0-9._%-]+@[A-Z0-9._%-]+\.[A-Z]{2,6}$", $email)) { 
  echo "<p>It appears you entered an invalid email address</p><p><a href='javascript: history.go(-1)'>Click here to go back</a>.</p>"; 
} 

 elseif (!trim($name)) { 
  echo "<p>Please go back and enter a Name</p><p><a href='javascript: history.go(-1)'>Click here to go back</a>.</p>"; 
} 


 elseif (!trim($message)) { 
  echo "<p>Please go back and type a Message</p><p><a href='javascript: history.go(-1)'>Click here to go back</a>.</p>"; 
}  

 elseif (!trim($email)) { 
  echo "<p>Please go back and enter an Email</p><p><a href='javascript: history.go(-1)'>Click here to go back</a>.</p>"; 
} 

// Sends out the email or will output the error message 
 elseif (mail($sendto, $subject, $emailcontent, $headers)) { 
  echo "<br><br><p><b>Thank You $name</b></p><p>We will be in touch as soon as possible.</p>"; 

} 
} 
else { 
?> 
<p align="center">Please complete all details of your enquiry<br>and we will get back to you shortly.</p>
<br>
<form method="post"><INPUT NAME="op" TYPE="hidden" VALUE="send"> 
  <table> 
    <tr> 
      <td><p>Name:</p></td> 
      <td> 
        <input name="name" type="text" size="30" maxlength="150"> 
      </td> 
    </tr> 
      <tr> 
      <td><p>E-mail:</p></td> 
      <td> 
        <input name="email" type="text" size="30" maxlength="150"> 
      </td> 
    </tr> 

    <tr> 
      <td valign="top"><p>Message:</p></td> 
      <td><textarea name="message" cols="40" rows="6"></textarea></td> 
    </tr> 
    <tr><td></td> <td><input name="submit" type="submit" value="Send Message"></td></tr> 
  </table> 
</form> 
<?php } ?>
  </tr>
</table>

Save the page as whatever you want.php and then just call it or include or popup or whatever and it is as simple as that.

hibeesmad · 30 Sep 2008 at 19:11

I can't get it too work. When I run it, it says malicious code detected.

("REMOTE_ADDR"). has been logged.

What does this mean?

Johnny.

Deleted member 77746 · 30 Sep 2008 at 19:58

hibeesmad said:
I can't get it too work. When I run it, it says malicious code detected.

("REMOTE_ADDR"). has been logged.

What does this mean?

Johnny.

Errr? pass? printscreen of the problem?

unwashed potato! · 30 Sep 2008 at 21:32

did you try my code? put it on any page with an extension of .php and it should work. only need to replace the bit that says put your email address here

asim18 · 1 Oct 2008 at 02:34

Have you uploaded it to a server? or are you just previewing it?