We are using stristr to test if someone included a link in the question textarea on a form. And it works fairly well to keep spam at bay. But newer attempts by miscreants have started putting the spam links in other inputs such as name, address, city, etc.
Our current code:
// check if question box has links and die if so
$has_link = stristr($_POST['question'], 'http://') ?: stristr($_POST['question'], 'https://');
if($has_link){
die('Your submission was blocked. Do not submit links to websites.');
}
Is there a way to write this so that it tests any and all POST variables without having to write out each one individually ie, $_POST['question'], $_POST['name'], $_POST['address']?