A friend of mine tells me he uses this formail script
# FormMail Version 1.6 #
# Copyright 1995-1997 Matt Wright mattw@worldwidemart.com #
# Created 06/09/95 Last Modified 05/02/97
found here (http://www.allhtml.com/perl/perl475.php), as is.

Is it vulnerable to spammers (hijacking the script) ? I told him it might be.

Yes, that script is vulnerable. You might want to take a look at the formail script available at this site http://nms-cgi.sourceforge.net/

Richard

what exactly is in your forms? If it's nothing too important, then I'd use that, cause it's simple and does the job

uh ? I don't understand your question

If you do use a formmail script, rename the file to something other than "formmail.pl". Bots randomly go out to "http://randomdomain.com/cgi-bin/formmail.pl", and try to send mail. Something to think about.