I have found that most of the suggestions here on validation lead to Javascript, but the problem is people can turn Javascript off, and most of the time those same people are the people you dont want sniffing around one of these forms.
I have tried to add PHP validation and it works, but it still emails the results anyway, which as you can probably tell, is not a good thing. After all, the whole reason of putting the PHP validation in there to begin with is to potentially stop any attack on my server or cross-site issues that can happen with unguarded variables.
In short, there needs to be another box just for PHP validation code (not in that onsubmit area which is confusing anyway) that executes from the submit button, and if all is ok, then the email gets sent.
In every case of forms I have made to date, this is not the case. The form gets sent eventhough the php validation "dies".
Very dangerous and something that should be fixed asap.
I have tried to add PHP validation and it works, but it still emails the results anyway, which as you can probably tell, is not a good thing. After all, the whole reason of putting the PHP validation in there to begin with is to potentially stop any attack on my server or cross-site issues that can happen with unguarded variables.
In short, there needs to be another box just for PHP validation code (not in that onsubmit area which is confusing anyway) that executes from the submit button, and if all is ok, then the email gets sent.
In every case of forms I have made to date, this is not the case. The form gets sent eventhough the php validation "dies".
Very dangerous and something that should be fixed asap.
Hello,
I understand, Ok, V 2.1 will have 2 onsubmit codes, 1 before the email event and one after it so you can control this!!
Cheers
Max
I understand, Ok, V 2.1 will have 2 onsubmit codes, 1 before the email event and one after it so you can control this!!
Cheers
Max
This topic is locked and no more replies can be posted.
