Do you want a feedback form for your blogger to send comment?
I have wrote a simple plugin for this. Please see here
Just download and unzip to /mu-plugins folder.
WPMU Feedback Form (3 posts)
-
mypatricks
Posted 18 years ago # -
Excellent plugin but it could use a tweak or two, then it'd be in top shape.
I noticed you are using unfiltered/untrusted $_POST vars in your email headers. Someone with alot of time and nothing else to do could manipulate the email headers and send spam to outside addresses and whatnot.
I'd suggest either a) remove the 2 hidden form fields and put them in the action function so the user can't change the values or b) properly filter the post input so usage of non-alphanumeric characters (like \n or \r) throw error messages instead of sending the mail.
Review the contact form written for regular Wordpress to see an example of how the author coded around the spam issue. It's a pretty simple filter.
Also, whenever in doubt, this is always a good resource.
-
Great work both of ya.. thanks :)
