Thank you for your input!'; //Set the form flag to no display (cheap way!) $flags = 'style="display:none;"'; // Sanitize everything $name = 'Topology Students Resource'; $to = 'tsw@math.gatech.edu'; $message = sanitize($_POST['message']); $reply = sanitize($_POST['reply']); $subject = 'TSR Suggestion'; if ($reply=='') {$reply=$to;} /* Let's prepare the message for the e-mail */ $headers = "From: Topology Students Resource \r\nReply-To:"; $headers .= $reply; $headers .= "\r\nMIME-Version: 1.0\r\nContent-Type: multipart/mixed; boundary=\"_1_$boundary\""; $message="This is a multi-part message in MIME format. --_1_$boundary Content-Type: multipart/alternative; boundary=\"_2_$boundary\" --_2_$boundary Content-Type: text/plain; charset=\"iso-8859-1\" Content-Transfer-Encoding: 7bit TSR Suggestion: $message --_2_$boundary-- "; mail($to, $subject, $message, $headers); } // sanitize url/email address function sanitize2($address) { $address = trim($address); $address = htmlspecialchars($address); return $address; } // sanitize the data - removing whitespace, slashes, and converting special characters to HTML entities function sanitize($data) { $data = trim($data); $data = stripslashes($data); $data = htmlspecialchars($data); return $data; } ?>