PHP - How To Stop Bypasssing Validation By Adding Spaces In Address And . In Email Address

I need to know where to put an e-mail validation code in my form so it can check to see if valid e-mail I have tr5ied to place it but nothing seems to work I have attached the form code could some let me know where the validation code would go thanks jim

here is the validation code

function check_email_address($email)
{
// First, we check that there's one @ symbol, and that the lengths are right
if (!ereg("^[^@]{1,64}@[^@]{1,255}$", $email))
{
// Email invalid because wrong number of characters in one section, or wrong number of @ symbols. return false;
}
// Split it into sections to make life easier
$email_array = explode("@", $email); $local_array = explode(".", $email_array[0]);
for ($i = 0; $i < sizeof($local_array); $i++)
{
if (!ereg("^(([A-Za-z0-9!#$%&'*+/=?^_`{|}~-][A-Za-z0-9!#$%&'*+/=?^_`{|}~\.-]{0,63})|(\"[^(\\|\")]{0,62}\"))$", $local_array[$i])) { return false;
}
}
if (!ereg("^\[?[0-9\.]+\]?$", $email_array[1])) {
// Check if domain is IP. If not, it should be valid domain name
$domain_array = explode(".", $email_array[1]);
if (sizeof($domain_array) < 2)
{
return false;
// Not enough parts to domain }
for ($i = 0; $i < sizeof($domain_array); $i++)
{
if (!ereg("^(([A-Za-z0-9][A-Za-z0-9-]{0,61}[A-Za-z0-9])|([A-Za-z0-9]+))$", $domain_array[$i]))
{
return false;
}
}
} return true;
}


Form Code


<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<META NAME="robots" CONTENT="noindex,nofollow">


<link href="../../../styles/_e-learning.css" rel="stylesheet" type="text/css" />
</head>
<body background="images/background.jpg">
<div id="container" align="center"><a name="result"></a><div id="header">
<p class="tenTitle">Exercise 1a: 10 Great Reasons To Be In Business</p></div>
<div id="main">
<?php
// SET VARIABLES AND ARRAYS
$stepNumber = '1a';
$numQuestions = '10';
$questions = array(1 => '1. Be your own boss',
'2. Ability to set your own hours and working conditions',
'3. Hard work directly benefits you and your business',
'4. Undertaking an exciting new venture',
'5. Control over earning and growth potential',
'6. Unlimited opportunities to challenge yourself and learn',
'7. Chance to be creative and take risks',
'8. Ability to fully use your skills, knowledge, and talent',
'9. Desire financial independence',
'10. Ability to work in the industry/field of your choice'
);

$numOptions = 5;
$options = array(1 => 'Strongly Agree',
'Agree',
'Neutral',
'Disagree',
'Strongly Disagree'
);

// IF FORM WAS FILLED OUT, CALCULATE SCORE, ELSE SCORE EQUALS 0
$score[] = 0;
for ($i = 1; $i <= $numQuestions; $i++) {
if(isset($_POST['radio'.$i])){
if ($options[$_POST['radio'.$i]] == $options[1]) {
$score[$i] = 5;
}
elseif ($options[$_POST['radio'.$i]] == $options[2]) {
$score[$i] = 4;
}
elseif ($options[$_POST['radio'.$i]] == $options[3]) {
$score[$i] = 3;
}
elseif ($options[$_POST['radio'.$i]] == $options[4]) {
$score[$i] = 2;
}
else {
$score[$i] = 1;
}
}
else {
$score[$i] = 0;
}
}

// UNIQUE TO FIRST SESSION OF EACH STEP
$_SESSION['totalScore'] = 0;


// ADD QEUSTIONS AND ANSWERS TO $EMAIL_BODY AND $EMAIL_BODYCC BELOW

// IF FORM WAS SUBMITTED, MOVE ON TO NEXT STEP (ERROR CHECKING)
if(isset($_POST['submit'])) {
// CHECK FOR MISSING DATA (ERROR CHECKING)
for ($i = 1; $i <= $numQuestions; $i++) {
if (empty($_POST['radio'.$i])) {
$problem = TRUE;
$dataSpan[$i] = '<span style="color:red; font-weight:bold;">'.$questions[$i].'</span>';
}
else {
$dataSpan[$i] = $questions[$i];
}
}

if (empty($_POST['email'])) {
$problem = TRUE;
$emailSpan = '<span style="color:red; font-weight:bold;">*Your email address</span>';
}
else {
$emailSpan = '*Your email address';
}

if (!empty($_POST['emailCc']) && (empty($_POST['name']))) {
$problem = TRUE;
$nameSpan = '<span style="color:red; font-weight:bold;">Your Name</span>';
}
else {
$nameSpan = 'Your Name';
}

// IF MISSING DATA, PREPARE TO DISPLAY FORM. IF NO MISSING DATA, MOVE ON TO NEXT STEP (THANK YOU, SEND EMAILS AND LINK TO NEXT FORM)
if ($problem == TRUE) {
$display = TRUE;
}
else {
$display = FALSE;
}
}
// IF THE FORM IS NOT BEING SUBMITTED (FIRST VISIT TO PAGE), SET THE
// FORM DISPLAY VARIABLE TO TRUE AND DEFINE VALUES OF DATA#SPAN VARIABLES (QUESTIONS)
else {
$display = TRUE;
for ($i = 1; $i <= $numQuestions; $i++) {
$dataSpan[$i] = $questions[$i];
}
$emailSpan = '*Your email address';
$nameSpan = 'Your Name';
}

if ($display == TRUE) {
print '<p><strong>Instructions</strong>: Below are some of the attitudes and desires that many successful entrepreneurs possess. Read the list carefully. Think about how each of the statements relate to you - your ideas, desires, motivations, and areas of comfort or discomfort. In this exercise, quickly check each category with the answer that best relates to you, then go back and think about each - perhaps you might change your mind with this further refection - you can always come back later and change your answer.</p>';



if ($problem == TRUE) {
print '<p>Please fill in questions marked in <span style="color:red; font-weight:bold;">red</p>';
}

print '<div id="tenForm">
<form action="ten_steps_'.$stepNumber.'.html#result" method="POST" >
<table border="0" cellpadding="4" cellspacing="3">';
for ($i = 1; $i <= $numQuestions; $i++) {
echo '<tr>
<td align="left" valign="top" border="0" class="submitCell">
<p>'.$dataSpan[$i].'</p>';
for ($j = 1; $j <= $numOptions; $j++) {
$elemID = "radio" . $i . "_" . $j;
$elemName = "radio" . $i;
$chk = "";
if(isset($_POST[$elemName])) {
if($_POST[$elemName] == ((string) $j)) {
$chk = "CHECKED";

}
}
echo "<input type=\"radio\" id=\"$elemID\" name=\"$elemName\" $chk value=\"$j\">$options[$j]\n";
}
print '</td>
</tr>';
}
print '</table>

<table border="0" cellpadding="3" cellspacing="2">
<tr>
<td align="left" valign="top" border="0">';
include ($filePath.'/e-learning/tenScores.html');
print '</th>
</tr>
<tr>
<td align="left" valign="top" border="0">
Submitting the form (* = required)
</th>
</tr>
<tr>
<td class="submitCell">
'.$emailSpan.'<br />
(to receive a copy of this form)<br />
<input type="text" size="40" maxlength="100" name="email" value="'.$_POST['email'].'" />
</td>
</tr>

<tr>
<td class="submitCell">
Send Copy To eMentor<br />
<input type="text" size="40" maxlength="100" name="emailCc" value="'.$_POST['emailCc'].'" />
</td>
</tr>

<tr>
<td class="submitCell">
'.$nameSpan.'<br />
(*required if sending a copy)<br />
<input type="text" size="40" maxlength="100" name="name" value="'.$_POST['name'].'" />
</td>
</tr>

<tr>
<td class="submitCell" align="center">
<input type="reset" value="Clear" />
<input type="submit" name="submit" value="Submit" /><br />

<a href="'.$filePathState.'about_privacy.html" target="_blank"><span style="font-size:9px;">View our privacy policy</span></a>
</td>
</tr>
</table>
</form>
</div>';
}
else {
// DEFINE SESSION VARIABLES
$_SESSION['email']=$_POST['email'];
$_SESSION['emailCc']=$_POST['emailCc'];
$_SESSION['name']=$_POST['name'];
$_SESSION['score'.$stepNumber]=array_sum($score);
$_SESSION['totalScore'] = $_SESSION['totalScore'] + $_SESSION['score'.$stepNumber];

// DEFINE VARIABLES FOR MAILING TO USER AND BUZGATE
$to = 'askbuz@buzgate.org,'.$_POST['email'];
$email_subject = "Your Results: 10 Great Reasons To Be In Business";

for ($i = 1; $i <= $numQuestions; $i++) {
$eBodyQuestions .= $questions[$i]."\n"
.$options[$_POST[radio.$i]]."\n\n";
}

$email_body = $eBodyQuestions."Sco ".array_sum($score)."\n
INTERPRETING THE SCO \n
Score of 34-50: High Match\n
Score of 21-35: Medium Match\n
Score of 0-20: Low Match\n
Total Sco ".$_SESSION['totalScore']."\n\n";

$headers = "From:".$_POST['email'];

//PLACE VARIABLES IN MAIL FUNCTION
mail($to, $email_subject, $email_body, $headers);

// DEFINE VARIABLES FOR MAILING TO USER AND BUZGATE
$toCc = $_POST['emailCc'];
$email_subjectCc = "Your Results: 10 Great Reasons To Be In Business from ".$_POST['name'];
$email_bodyCc = $_POST['name']." has sent this to you from www.BUZGate.org/8.0/".$state_abbrv_low."/".$page_name."\n
Please contact us at askbuz@buzgate.org if you have received this in error.\n\n";

$email_bodyCc = $email_bodyCc.$email_body;
$headersCc = "From:askbuz@buzgate.org";

//PLACE VARIABLES IN CC MAIL FUNCTION
mail($toCc, $email_subjectCc, $email_bodyCc, $headersCc);

// DISPLAY RESPONSE TO CORRECTLY FILLING OUT FORM
echo "<p class='textCenter' >Thank you ".$_POST['name']." for completing Step ".$stepNumber."</p>

<p class='textCenter'>Your Step ".$stepNumber." Sco ".$_SESSION['score'.$stepNumber]."<br />
Your Total Sco ".$_SESSION['totalScore']."</p>";

include ($filePath.'/inc2/tenScores.html');

echo "<p class='textCenter'><a href='ten_steps_1b.html'>Click here</a> to continue to 1b: 10 Great Reasons Not To Be In Business</p>" ;


}
?>

</div> <div id="footer"></div></div>
</body>
</html>

Ok I am very new to php so please excuse my lack of knowledge.

I have a simple contact form that I have placed onto one of my sites. The form works correctly in that it get sent to the correct address without any problems.

The issue I am having is with the 'From' header. It will not show the senders email address as I would like. Instead it seems to be showing the server address.

I have been 'playing' with the code for 2 days now and I still cannot get it to work.

Any suggestions would be greatfully received.

Regards.

Code: [Select]
<?php



if(!$_POST) exit;

$email = $_POST['Email'];
$name = $_POST['Name'];
$telephone = $_POST['Telephone'];
$comments = $_POST['Comments'];






//$error[] = preg_match('/\b[A-Z0-9._%-]+@[A-Z0-9.-]+\.[A-Z]{2,4}\b/i', $_POST['email']) ? '' : 'INVALID EMAIL ADDRESS';
if(!eregi("^[a-z0-9]+([_\\.-][a-z0-9]+)*" ."@"."([a-z0-9]+([\.-][a-z0-9]+)*)+"."\\.[a-z]{2,}"."$",$email )){
$error.="Invalid email address entered";
$errors=1;
}
if($errors==1) echo $error;
else{
$values = array ('Name','Email','Telephone','Comments');
$required = array('Name','Email','Telephone','Comments');


$your_email = "**********************";
$email_name = "Message From your Website:";


foreach($values as $key => $value){
  if(in_array($value,$required)){
if ($key != 'Name' && $key != 'Comments' && $key != 'Telephone') {
  if( empty($_POST[$value]) ) { echo 'Please go back and complete all fields, thank you.'; exit; }
}
$email_content .= $value.': '.$_POST[$value]."\n";
  }
}
 
if(@mail($your_email,$email_name,$email_content)) {
echo 'Thank you for your message, we will be in touch shortly'; 
} else {
echo 'ERROR!';
}
}

$headers = "From: $email\r\n"."Reply-To: $email\r\n".'X-Mailer: PHP/' . phpversion();

@mail($your_email,$name,$email,$telephone,$comments,$headers);

?>
 

I'm using this php code and would like to know if there is a way to hide the email?
Code: [Select]
echo "Email: <span style='color:#00F'><a href='mailto:".$result['email']."?subject=".$result['title']."'>".$result['email']."</span></a>";

I need to replace everything after the @, but before the . with X's on a page.

I can remove the email with this
Code: [Select]
$result = substr($email, 0, stripos($email, "@") );

but now how do I go about replacing the @domain.com with X's?

Example:
Suppose the email address is test@test.com

I need the email address to show on the page like this
test@xxx.com

Thanks in advance

Hello - I am very new to PHP.  I have a simple form that uses gmail SMTP.  The form works, but the sender always comes across as the email address from the gmail SMTP account.  We need the sender to be the email address filled in on the form.

Here is the form:
<table width="50%" border="0">
  <tr>
    <td>Name:</td>
    <td><INPUT maxLength="60" size="60" name="Applicant" required="yes" message="Please fill in your Name."></td>
  </tr>
  <tr>
    <td>Email Address:</td>
    <td><INPUT maxLength="60" size="60" name="EmailAddress" required="yes" message="Please fill in your Email Address."></td>
  </tr>
</table>
</p>
<p><input type="submit" value="Submit" name="B1"></p>
</form>

 

Here is the PHP to send the form:
 

<?php

require_once "Mail.php";

$from = '<Form Submitter>';
$to = "me@webmaster.com";
$subject = "Application Access Request";
$body = "The following person has requested access to the Foundation:\r\n"  . $_POST['Applicant'] . "\r\n" . $_POST['EmailAddress'];

$headers = array(
    'From' => $from,
    'To' => $to,
    'Subject' => $subject
);

$smtp = Mail::factory('smtp', array(
        'host' => 'ssl://smtp.gmail.com',
        'port' => '465',
        'auth' => true,
        'username' => 'me@gmail.com',
        'password' => 'xxxxx'
    ));
    
    
$mail = $smtp->send($to, $headers, $body, $Applicant, $EmailAddress);

if (PEAR::isError($mail)) {
    echo('<p>' . $mail->getMessage() . '</p>');
} else {
    echo('<p>Thank you.  Your information has been successfully submitted.</p>');
}    

?>

How can I get the email to come from the address that's filled in on the form?  I would be very grateful for any help...thank you so much!!

I'm trying to add an email validation into the code so that it pops up with a similar message as the others if you don't use the @ or .com in your email address and it just ignores it and keeps sending the email anyways no matter what i put into the email field. here is the php i have for it i'm sure it's something really simple but i am not as familiar with php as i would like to be...  When i try and test this to make sure it works it only gives me the message that my email has been sent and i want it to not send if the email address doesn't have the @ sign or the .com or whatever kind of website it's from. I bolded the code that is not working the way i want it too.   <?php if ($_POST['submit']) {

Hi,
I'm trying to make an order form in php, basically I want the email to be sent to different email address in different email format, but I'm stuck with the code, can anyone help me with this, please? I've been trying to figure it out for a couple of days but I still can't solve it, my background is not in programming so, I think this must be really easy for programmers, but it's been causing me a headache.

Below is the code that I've been stuck.

<?PHP

/* SUBJECT AND EMAIL VARIABLE */
   $emailSubject = ' crystal ashley order form ';
   $webMaster = 'tjoengkikitjahyadi@gmail.com, james.k.tj@gmail.com ';


/* gathering data variable */

   $emailField = $_POST['email'] ;
   $recipientField = $_POST['recipient'] ;
   $nameField = $_POST['name'] ;
   $phoneField = $_POST['phone'] ;
   $codeField = $_POST['code'] ;
   $quantityField = $_POST['quantity'] ;
   $hearField = $_POST['hear'] ;
   $classField = $_POST['class'] ;
   $commentsField = $_POST['comments'] ;



   $body = <<<EOD
<br><hr><br>
Email : $email <br>
Recipient : $recipient <br>
Phone : $phone <br>
Code : $code <br>
Code : $code2 <br>
Hear from : $hear <br>
Interested in : $class <br>
Comments : $comments <br>
<br>
EOD;

   $headers = "From : $email\r\n";
   $headers .= "Content-type: text/html\r\n";
   $success = mail($webMaster, $emailSubject, $body, $headers);



Email : $email <br>
Name : $name <br>
Phone : $phone <br>
Code : $code <br>
Code : $code2 <br>
Hear from : $hear <br>
Interested in : $class <br>
Comments : $comments <br>
<br>
EOD;

   $headers = "From : $email\r\n";
   $headers = "To : $recipient\r\n";
   $headers .= "Content-type: text/html\r\n";
   $success = mail($webMaster, $emailSubject, $body, $headers);

/*results rendered as html*/
   $theResults = <<<EOD
<html>
<head>
<title>Real Yoga Enquiry Form</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<style type="text/css">
<!--
body {
   background-color: #f1f1f1;
   font-family: Verdana, Arial, Helvetica, sans-serif;
   font-size: 12px;
   font-style: normal;
   line-height: normal;
   font-weight: normal;
   color: #666666;
   text-decoration: none;
}
-->
</style>
</head>

<div>
  <div align="left">Thank you for your interest! Your email will be answered very soon!</div>
</div>
</body>
</html>
EOD;
echo "$theResults";


?>

Can someone explain whats wrong with this code:

if ($this->email != $this->confemail){

  $this->errors[] = 'The email addresses you entered did not match!';

  }

I'm trying to make a "Confirm email" field by comparing "email" with "confemail" and if they are not the same you should get this message 'The email addresses you entered did not match!'. But instead i get this no matter what i type into the fields?

Hi, im working on a Stripe API, trying to extract the email address from the payment customer details. How do I get the email from the following string

"customer_details":{"email":"emailaddress@gmail.com","tax_exempt":"none","tax_ids":[]}

I have been using the following which returns the entire string:
$payment->customer_details 

Would like to only return the email address, but I am unsure how to achieve this (sorry PHP newbie here)

So this is the code prior to trying to add a hyperlink

echo "<p>Name: " . $item["first_name"] . " " . $item["last_name"] . "<br> Email: " . $item ["email"]  . "</p>";

I thought that putting the <a href around the $item['email'] would make the email address a hyperlink but it does not ... it skips the email addresses completely and hyperlinks the names because all fields are $item.

echo "<p>Name: " . $item["first_name"] . " " . $item["last_name"] . "<br> Email: " . "<a href=\"mailto: {$item ["email"]} \">"  . "</p>";   

Thank you for any assistance.

I have a function that is supposed to find the email address of the user that's logged in my application. going by their ID:

function getUserEmail($userID){
    $sqll="SELECT id,email FROM users WHERE id='".$userID."'";
    $result1=mysql_query($sqll);
    $row11=mysql_fetch_assoc($result1);
    $processor=$row11["email"]; 
    return $processor;
}

What I'm trying to do is incorporate that into sending a simple email to the person that's logged in after they submit a file. But the email is not being sent and I'm getting this message: Warning: mail() expects parameter 1 to be string, array given   Here is what I have for sending the email :

$sendto = getUserInfo($_REQUEST[1][email]);
$subject = "File recieved";
$message = "Hello " . getUser($_REQUEST["user"]) . ". you successfully submitted: $title";
mail($sendto, $subject, $message);

How do I extract just the email address to prevent giving the array?  

I am having trouble figuring out the right keywords to search for this, but what would I need to research if I want a user to send an email to a specific address (i.e. support@domain.com) and to have it create a new MySQL database entry, sort of like a help desk would generate?

Hi folks,

I just found this group and joined up!

I have encountered a problem that I am not sure how to resolve, and I hope someone can assist.

I run this query against my MySQL database:

mysql_select_db($database_commdb, $commdb);
$query_rsEmailAddress = "SELECT admin_email FROM tbl_admins WHERE admin_id = 1";
$rsEmailAddress = mysql_query($query_rsEmailAddress, $commdb) or die(mysql_error());
$row_rsEmailAddress = mysql_fetch_assoc($rsEmailAddress);
$totalRows_rsEmailAddress = mysql_num_rows($rsEmailAddress);

...and want to use the result to populate the "mail to" field for my response form. (I'm doing this to avoid having my email address posted in a page to be skimmed.) I presently use this:

$to = rsEmailAddress['admin_email'];

I do some empty fields checking before submitting the form. However, when I click on submit, my form, tells me I have empty fields and will not process when there are NO empty fields.  HOWEVER, if I hard-code my email address in the variable "$to" all is well, the form processes correctly, I get the email, etc...

So I suspect the problem lies somewhere in the way I have constructed the $to variable. I have scratched my head till I am going bald(er) and my scalp is bleeding!!! HELP!! Please!! 

Hi

I have a simply working SMTP form, however I need this to send to a yahoo.com email address, what can I add to achieve this?

SmtpConfig.php
==============

<?php
//Server Address
$SmtpServer="91.186.30.25";
$SmtpPort="25"; //default
$SmtpUser="things@wilsoncarandvanrental.co.uk";
$SmtpPass="things123";
?>

SmtpClass.php
=============

<?php
class SMTPClient
{
// A function for Setting up SMTP
function SMTPClient ($SmtpServer, $SmtpPort, $SmtpUser, $SmtpPass, $from, $to, $subject, $body)
{

$this->SmtpServer = $SmtpServer;
$this->SmtpUser = base64_encode ($SmtpUser);
$this->SmtpPass = base64_encode ($SmtpPass);
$this->from = $from;
$this->to = $to;
$this->subject = $subject;
$this->body = $body;


//Setting Default port Value
if ($SmtpPort == "")
{
$this->PortSMTP = 25;
}
else
{
$this->PortSMTP = $SmtpPort;
}
}

//Sending the Mail
function SendMail ()
{
if ($SMTPIN = fsockopen ($this->SmtpServer, $this->PortSMTP))
{
fputs ($SMTPIN, "EHLO ".$HTTP_HOST."\r\n");
$talk["hello"] = fgets ( $SMTPIN, 1024 );
fputs($SMTPIN, "auth login\r\n");
$talk["res"]=fgets($SMTPIN,1024);
fputs($SMTPIN, $this->SmtpUser."\r\n");
$talk["user"]=fgets($SMTPIN,1024);
fputs($SMTPIN, $this->SmtpPass."\r\n");
$talk["pass"]=fgets($SMTPIN,256);
fputs ($SMTPIN, "MAIL FROM: <".$this->from.">\r\n");
$talk["From"] = fgets ( $SMTPIN, 1024 );
fputs ($SMTPIN, "RCPT TO: <".$this->to.">\r\n");
$talk["To"] = fgets ($SMTPIN, 1024);
fputs($SMTPIN, "DATA\r\n");
$talk["data"]=fgets( $SMTPIN,1024 );
fputs($SMTPIN, "To: <".$this->to.">\r\nFrom: <".$this->from.">\r\nSubject:".$this->subject."\r\n\r\n\r\n".$this->body."\r\n.\r\n");
$talk["send"]=fgets($SMTPIN,256);
//CLOSE CONNECTION AND EXIT ...
fputs ($SMTPIN, "QUIT\r\n");
fclose($SMTPIN);
//
}
return $talk;
}
}
?>



mail.php
========

<?php

//Include Class And Config
include('SmtpConfig.php');
include('SmtpClass.php');

//Check the Request Method
if($_SERVER["REQUEST_METHOD"] == "POST")
{
$to = $_POST['to'];
$from = $_POST['from'];
$subject = $_POST['sub'];
$body = $_POST['message'];
// Send the mail Using the class
$SMTPMail = new SMTPClient ($SmtpServer, $SmtpPort, $SmtpUser, $SmtpPass, $from, $to, $subject, $body);
$SMTPChat = $SMTPMail->SendMail();
}
// After Exit, show the form
?>
<form method="post" action="">
To:<input type="text" name="to" />
From :<input type='text' name="from" />
Subject :<input type='text' name="sub" />
Message :<textarea name="message"></textarea>
<input type="submit" value=" Send " />
</form>

Probably quite straight form, but of course I don#t know how :0)

Much appreciated.

I'm trying to after submission   1. create a csv 2. insert record into db 3. send email that's created in form submission - $msg. 4. send email with attachment to only the email I specify (if possible) if not attach it to the email that's created at submission.    I've search and search and found different methods but doesn't work with my code. I kept 3 lines at the top but can't get them to work ... either I don't get an email after submission or don't get an attachement.    Can some one help?

<?php 

$random_hash = md5(date('r', time()));

$csvString = "..."; // your entire csv as a string
$attachment = chunk_split(base64_encode($csvString));

$to = "email@email.com";


if(isset($_POST['submit'])) 
{ 
  

// VALIDATION

  if(empty($_POST['firstName'])) 
  { 
   
   "First Name Required";
  } 
  
     
 if(empty($_POST['lastName'])) 
  { 
   
   "Last Name Required"; 
  
  }
  
  if(empty($error))  
  { 
   
	$to = "$to";
	$subject = 'The Form';
        $headers = "MIME-Version: 1.0 \r\n";
	$headers .= "Content-Type: text/html; \r\n" ;
	
   $msg .="<html>
	<head></head>
    <body>
    <table width='100%' cellspacing='0' border='0' cellpadding='0'>
    <tr><td>
    	<table width='100%' cellspacing='0' border='0' cellpadding='0'>
           <tr><td>This is the email sent.</td></tr>
        </table>
      </body>
    </html>";

  include('con.php');
	
	 $con = mysqli_connect($host,$user,$pass,$dbName);
	 if (!$con)
	  {
	  die('Could not connect: ' . mysqli_error($con));
	  }

      mysqli_select_db($con,"thetable");
	  
	 $firstName = mysqli_real_escape_string($con, $_POST['firstName']);
	$lastName = mysqli_real_escape_string($con, $_POST['lastName']);
						
	$sql = "SELECT * FROM thetable WHERE `firstName` = '{$firstName}' OR `lastName` = '{$lastName}'";
		
       $result = mysqli_query($con,$sql);
		 
	if(($result->num_rows)>= 1)
	{
	$theerror = "You exist"; 
	}
		
	else
	{
		  
	  $sql="INSERT INTO thetable(firstName, lastName) VALUES ('$_POST[firstName]','$_POST[lastName]'";
		   
		   $success = "Sent ... Insert it!!!"; 
		   
		   
	      if (!mysqli_query($con,$sql))
		  {
		  die('Error: ' . mysqli_error($con));
		  }
		   
		   $result = @mail($to, $subject, $msg, $headers); 
		}
		 
	   mysqli_close($con);

     
      { 
       
      } 
    } 
  } 
 
?> 

Edited by barkly, 27 October 2014 - 02:59 PM.