检查循环外的g-recaptcha-response,每次迭代时都不需要检查它.
然后检查$_POST变量的键不是g-recaptcha-response,然后再将其添加到消息中.
$mailTo = "$email_address";
$mailSubject = "$email_subject";
$mailBody = "The form values entered by the user are as follows: \n\n";
if(isset($_POST['g-recaptcha-response'])){$captcha=$_POST['g-recaptcha-response'];
}
foreach($HTTP_POST_VARS as $key=>$value)
{
if(!$captcha)
{
echo "";
exit;
}
$response=file_get_contents("https://www.google.com/recaptcha/api/siteverify?secret=&response=".$captcha."&remoteip=".$_SERVER['REMOTE_ADDR']);
if($response.success==false)
{
echo '
You are spammer! /h2>';
}else
{
echo '
Thanks for contacting us.
';}
if ($key != 'g-recaptcha-response') {
$mailBody .= "$key = $value\n";
}
}