Home/ Questions/Q 564703
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-13T12:47:42+00:00

Is there an equivalent to mysql_real_escape_string() for email injection? I have a form where

  • 0

Is there an equivalent to mysql_real_escape_string() for email injection? I have a form where the user submits their email. I am afraid that someone could insert a comma separated list of emails and use my site for spamming.

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    You can use filter_var to validate the e-mail address:

    if (!filter_var($address, FILTER_VALIDATE_EMAIL)) {
    // invalid e-mail address
}
    • 0