| Description |
This is a fairly thorough ColdFusion implementation of the ubiquitous perl script formmail.pl. ddformmail.cfm is easy to deploy, but has lots of options for making fields required, redirecting after submission, etc etc. Security is dealt with by NOT allowing the recipient address to be specified in a hidden form field, i.e. not following the way that formmail.pl does it. This does mean you need to put a new copy of ddformmail.cfm on your server for every user (with a tiny, simple customisation to set the recipient email variable). The good news is that it takes away the complex and vulnerable regular expression stuff which anyway needs to be modified in formmail.pl for every range of legal recipient addresses. Compatible with ColdFusion 4.5, 5, MX and MX 6.1, and possibly other versions too (reports welcome). |
