Joomla! Issue Tracker | Joomla! CMS #20286 - Spam protection for Email Link form

Information Required J3 Issue ?

Closed
14 Jun 2019
Medium
Build: master
# 20286

Quy
3 May 2018

The Email this link to a friend form can be used to spam. There are no length restrictions to Sender and Subject fields. As a result, block of text/links can be inserted into the email subject/body with these two fields.

Possible solutions:

Remove subject field and use article's title instead
Limit length of Sender field
Remove links from these fields

Votes

# of Users Experiencing Issue

0/1

Average Importance Score

3.00

Quy - open - 3 May 2018

joomla-cms-bot - change - 3 May 2018

Labels

Added: ?

joomla-cms-bot - labeled - 3 May 2018

franz-wohlkoenig - change - 3 May 2018

Status

New

⇒

Discussion

franz-wohlkoenig - change - 3 May 2018

Category

⇒

com_mailto

brianteeman - change - 28 May 2018

Labels

Added: J3 Issue

brianteeman - labeled - 28 May 2018

brianteeman - comment - 23 Jul 2018

Personally I would remove this functionality completely from joomla

zero-24 - comment - 23 Jul 2018

As of 3.8.9 we have added captcha support so this is as save as the contact form. By that time the removal was suggested but never confirmed in the internal security tracker.

@wilsonge can you take a moment and take a decision for 4.0? We would also need to take care what happen on upgrades.

Quy - comment - 8 Jun 2019

Pending PR #24025

franz-wohlkoenig - comment - 8 Jun 2019

If #24025 is merged this Issue get closed.

franz-wohlkoenig - change - 8 Jun 2019

Labels

Added: Information Required

franz-wohlkoenig - labeled - 8 Jun 2019

Quy - change - 14 Jun 2019

Status	Discussion	⇒	Closed
Closed_Date	0000-00-00 00:00:00	⇒	2019-06-14 19:27:56
Closed_By		⇒	Quy

Quy - close - 14 Jun 2019

Add a Comment

Older
Newer

Joomla! Issue Tracker - CMS

[#20286] - Spam protection for Email Link form

Votes

Add a Comment