Dear ALl
I have recently made some forms using javascript (up until then I ususally did so in php).
I have some simple user validation - required fields, correct format for email etc etc When submit is pressed a simple php script operates to send the detail in an email
I have recently got concerned about the security of these forms. This mornign I recevied a form reply in which all the fields were blank. (i managed to reproduce this myself using javascript:document.spamform.onsubmit="return true;";
So now I am worried that someone can use my form to hack the site, which is a joomla cms. We have taken quite a few security precautions for the site, but not in the form
I have spent some time searching around google, and its overwhelming!!!
Could somebody please direct me as to where to start. Should I just dump the javascript form and rework it in php, adding stripslases and so on? Or are there some things I can do to avoid this form being used?
I'd really apprecaite any pointers!
Thanks in advance
Edward