  |
1 | 1 | | <?php |
| |
2 | 2 | | /* |
 |
3 | | - | $Id: email.php 410 2006-01-26 09:17:09Z hpdl $ |
| |
| 3 | + | $Id: email.php 448 2006-02-21 06:27:28Z hpdl $ |
|
4 | 4 | | |
| |
5 | 5 | | osCommerce, Open Source E-Commerce Solutions |
| |
6 | 6 | | http://www.oscommerce.com |
| |
|
|
 |
… |
|
473 | 473 | | */ |
| |
474 | 474 | | |
| |
475 | 475 | | function send($to_name, $to_addr, $from_name, $from_addr, $subject = '', $headers = '') { |
|
| 476 | + | if ((strpos($to_name, "\n") !== false) || (sstrpos($to_name, "\r") !== false)) { |
| |
| 477 | + | return false; |
| |
| 478 | + | } |
| |
| 479 | + | |
| |
| 480 | + | if ((strpos($to_addr, "\n") !== false) || (strpos($to_addr, "\r") !== false)) { |
| |
| 481 | + | return false; |
| |
| 482 | + | } |
| |
| 483 | + | |
| |
| 484 | + | if ((strpos($subject, "\n") !== false) || (strpos($subject, "\r") !== false)) { |
| |
| 485 | + | return false; |
| |
| 486 | + | } |
| |
| 487 | + | |
| |
| 488 | + | if ((strpos($from_name, "\n") !== false) || (strpos($from_name, "\r") !== false)) { |
| |
| 489 | + | return false; |
| |
| 490 | + | } |
| |
| 491 | + | |
| |
| 492 | + | if ((strpos($from_addr, "\n") !== false) || (strpos($from_addr, "\r") !== false)) { |
| |
| 493 | + | return false; |
| |
| 494 | + | } |
| |
| 495 | + | |
|
476 | 496 | | $to = (($to_name != '') ? '"' . $to_name . '" <' . $to_addr . '>' : $to_addr); |
| |
477 | 497 | | $from = (($from_name != '') ? '"' . $from_name . '" <' . $from_addr . '>' : $from_addr); |
| |
478 | 498 | | |