Having been around web programming and security related issues for some time I was aware of SQL injection attacks. However I did not now about “E-Mail injection” for abusing vulnerable scripts to send spam.

After reading this article at http://www.securephpwiki.com I found it suprisingly easy and fun to abuse vulnerable PHP scripts.

You believe you are safe ´cause you hard coded the recipient in your ‘feedback.php’ script? You are wrong! :-)