<?php
class ProtectEmail
{

	function ProtectEmail(&$arr)
	{
		$this->clean_vars($arr);
	}
	
	function clean_vars(&$arr)
	{
		foreach($arr as $key => $val)
		{
			$arr[$key] = preg_replace('/[^
		,@.a-zA-Z0-9()\-_\'!$%&=*+;:"<>?]/', ' ', $val);
			if($this->is_malicious($val))
			{
				die();
			}
		}
	}
	
	function is_malicious($input) 
	{
		$is_malicious = false;
		$bad_inputs = array("\r", "\n", "mime-version", "content-type", "cc:", "to:");
		foreach($bad_inputs as $bad_input) 
		{
			if(strpos(strtolower($input), strtolower($bad_input)) !== false)
			{
				$is_malicious = true; break;
			}
		}
		return $is_malicious;
	}
	
}
?>