Release Notes: Two cross site scripting security fixes have been applied to the HTML output. New features include the ability to cloak email addresses inside the script and to specify how the field aliases are applied (HTML, email, or both).
Release Notes: This release contains three new features along with a few bugfixes. The first feature is field name aliasing to get rid of having the end user seeing result pages that had field names like email_address_of_your_dog. The second new feature is hidden fields. The hidden fields allow you to hide the user input from the results page (good for passwords). The third and final new feature for this release has to do with the $referers array, which now accepts regular expressions with the domain names.
Release Notes: Fixes in this release include a possible exploit with the e-mail address regular expression, issues with line breaks in some mail clients, and error reporting in send_mail().
Release Notes: This version includes better error reporting, fixes for show_blank_fields, and it no longer passes the form results to "thank you" pages (unless specified to).
Release Notes: A fix for the open relay exploit, all recipient email address domains must be listed in the referers array, and cleanups for all PHP index warnings.
Release Notes: The main focus of this version is to add the ability to specify CC, BCC, and mail priority. This version also allows for all data that was sent to PHPFormMail to be POST encoded for the redirected "error" and "thank you" pages. With the redirected pages now getting all the info that PHPFormMail did, you can easily set up third party scripts to take advantage of this info.