This site was created to help people secure their sites and servers from the php mail() injection.

The decision to create this website was taken after one of our sites have been exploited with the e-mail injection. After this attack, we searched the web for information and there were only a few sources avaliable with pratctical and high quality information. Some of the results only described the problem while others showed some ways to stop the attack. We also searched for the symptoms of the strange behaviors of the server. In both cases, most part of the results had no relevant information.

Some of the solutions we found just said "instead of using the php mail() use something else, such as zend_mail, pear mail or other mailers". Well, if a webmaster already have a full working script based on a certain mailer, he can't simply change the mailer in no-time and keep his script up-n-running. These solutions were useless for us for an immediate action.

Here on mailinjection.com we have everything compiled: high quality and practical information ready for use, already compiled for you. We will also provide you a list of symptoms, so you can verify if you are being a victim of e-mail injection. Our solutions were written in a way you can apply them immediatelly and keep your script safe using the php mail() as the mailer.

We thank you for your time reading this website and hope you don't have any further issues with e-mail injection in the future.