> From: moseley at hank.org > Date: Wed, 4 Aug 2010 08:14:05 -0700 > To: thelist at lists.evolt.org > Subject: Re: [thelist] PHP_SELF / Contact Form > It's not that insecure sine you are sending it back to the user that > submitted it, but wasn't there a number of recommendations on this about > escaping user-supplied data? > > > -- > Bill Moseley > moseley at hank.org > -- yes I have added the validation to have extra security in addition to escaping user input.