Send value of PHP variable in template via hidden field in a form

The short answer- don’t send all that data with the form.

You know what data goes with the form, and the email has to be sent from the server, so there’s no reason for that data to make a round trip out to a browser and back to your server.

Set some sort of unique identifier and use that to get whatever data you need to send, whether it’s attached to the current page, the current logged in user, etc..

Here’s a quick proof of concept.

First, a Shortcode to output the form. Here we show two possible methods for identifying the form- an ID supplied with the shortcode, or the current page ID. We also check if the user is logged in or not, and whether to display the form or show a message that it’s just been submitted.

function wpd_form_shortcode( $atts ){
    $a = shortcode_atts( array(
        'form_id' => 0,
    ), $atts );

    if( is_user_logged_in() ){

        if( isset( $_GET['sent'] ) ){
            $form = 'form submitted';
        } else {
            $form = '<form method="post" action="' . admin_url( 'admin-post.php' ) . '">';
            $form .= '<input type="hidden" name="action" value="wpd_send_form">';
            $form .= '<input type="hidden" name="form_id" value="' . $a['form_id'] . '">';
            $form .= '<input type="hidden" name="post_id" value="' . get_the_ID() . '">';
            $form .= '<input type="submit" value="Submit">';
            $form .= '</form>';
        }

    } else {

        $form = 'You must be logged in';

    }

    return $form;
}
add_shortcode( 'wpd_form', 'wpd_form_shortcode' );

Now the action hooked to admin_post that the above form points to. Here we show how to fetch the passed values, get the current logged in user, and send an email. This is where you should get those post IDs, whether from post meta, user meta, etc., and iterate over each to build the email.

function wpd_send_form_function() {

    // get the form ID or post ID
    // use these to get whatever data you need, get_post_meta, etc.
    $form_id = $_POST['form_id'];
    $post_id = $_POST['post_id'];

    // get the current logged in user info
    $current_user = wp_get_current_user();

    // put the data in the content of the email and send it
    $to = '[email protected]';
    $subject="Email from " . $current_user->user_login;
    $body = 'Email from post_id ' . $post_id;

    wp_mail( $to, $subject, $body );

    // redirect back to the page that contained the form we just submitted
    wp_safe_redirect( $_SERVER['HTTP_REFERER'] . '?sent=true', 303 );
    exit;
}
add_action( 'admin_post_wpd_send_form', 'wpd_send_form_function' );
// uncomment next line if you want to allow users who aren't logged in
// add_action( 'admin_post_nopriv_wpd_send_form', 'wpd_send_form_function' );

You should also look into using a nonce with the form, as well as doing some basic checks that you’ve got a valid post ID, that the user has permission to access the data for that post, etc..

Related Posts:

  1. How to pass on Google Adwords gclid variable to other pages
  2. Is it possible to pass variables to WordPress externally?
  3. Form Post / Session Variables not Working in Query with Pagination
  4. What is &amp used for
  5. How to include landing page with form submission?
  6. How to edit a user profile on the front end?
  7. How to display user registration form on front-end of the website?
  8. Is wp_nonce_field vulnerable if you know the action name?
  9. Autocomplete for taxonomy input boxes on a front end form
  10. set_query_var doesn’t seem to work on init hook
  11. How to send multipart form data to WordPress endpoint
  12. Placeholders in Jetpack Contact Form [closed]
  13. $_POST empty on submit (same code, same form submits normally on local server)
  14. Loading scripts & styles from a meta box callback function
  15. One comment per user per post
  16. Looking for a simple approach for handling user $_POST data without AJAX?
  17. How to return variables from admin-post.php
  18. Setting specific image size for specific form upload file field
  19. Get data from dropdown and update page
  20. How to Process Form Request
  21. Validate form in functions.php, send errors back to template
  22. limit characters when posting from form
  23. Adding data to an array in usermeta and displaying it in a loop
  24. Help with forms and nonces
  25. Stripe Error: must provide source or customer [closed]
  26. How to submit form in a PHP file in WordPress?
  27. WPForm, how to set date to tomorrow
  28. php form create 2 posts
  29. Create form on plugin options page that creates submenu pages for that plugin
  30. Creating a contact form with Laravel frontend
  31. Contact Form 7 – Add a Info Text to Checkboxes/Radiobuttons [closed]
  32. How to make WordPress forms secure (HTTPS)
  33. Can you have more than one nonce on a page?
  34. Post submit using shortcode and init
  35. Password protected page with a form submits for me fine but for others redirects them back to the password prompt
  36. What form element names break wordpress?
  37. Remove field in the form : only works for “url”, not for “email”?
  38. I am trying to grab the title and put it in a paypal form select option
  39. How to add required fields in user profile admin page?
  40. Java code/ JSP page in wordpress
  41. Should I use wp_nonce_field on my contact form?
  42. Form Submission Warning: Cannot modify header error only when plugin is deactivated
  43. Create a registration form with a PayPal checkout fee? [closed]
  44. Programmatically populate form fields with data
  45. comment form name and email not working?
  46. advanced custom fields and contact form 7
  47. Stop SPAM from custom form
  48. Checkboxes in a wordpress form are not showing as checked when selected [closed]
  49. Radio&Checkbox buttons Contact form 7 not clickable
  50. Complex Timesheet Form
  51. Custom tables and using wpdb to insert into DB from a html form
  52. How to add a placeholder to the protected post password input
  53. How to change a form end email?
  54. Saved emails at dashboard
  55. Fatal error: Call to undefined function wp_insert_post()
  56. Simple form validation for custom post type in front end. Not working
  57. WordPress Frontend Post Form (Bootstrap Modal) Not Creating Post
  58. Inquiry form like on URL [closed]
  59. Update user meta on custom wordpress form and redirect
  60. Headers already sent on a frontend post form using wp_redirect before get_header
  61. Contact form with Jquery and PHP don’t work
  62. Email from my theme’s contact form doesn’t get the reply-to address right
  63. Can I have two submit buttons in one form? [closed]
  64. how do i make the “contact us” on a page created not to display
  65. How to add a new variable to blog creation form?
  66. Email form getting hacked
  67. sending form with time interval
  68. How to redirect a Link to a new tab in contact form 7?
  69. How do I implement form handling when form is custom HTML?
  70. how do I hide or encrypt query strings for gravity forms
  71. Why is my contact form not working?
  72. Save and retrive data from a custom form to database
  73. WPAdverts – How to limit form submission 10 per month
  74. Using an iframe for a form help
  75. Fatal Error with WP Forms
  76. How to call or add password input / generate password / password strenght meter in custom registration form?
  77. Need to show results on the frontend of an admin form
  78. Form data being sent to parent directory
  79. Form submissions that require users ID# [closed]
  80. fetch custom post if meta key exist
  81. Passing form data on submit
  82. Create a custom calculator in wordpress
  83. How to stopping auto scrolling after submitting the form?
  84. Preventing form resubmission on contact form plugin
  85. Plugin to get a result based on form checkbox
  86. How to handle dynamic form data with repeating fields?
  87. Pay before posting (frontend insert post)
  88. Passing input value into name of input
  89. wp_insert_post with POST data
  90. Adding a “Report the post” button/form?
  91. wordpress not saving form code in code editor
  92. Create register form plus send post
  93. Auto populate a Form
  94. Dropdown List Won’t Display Selected Option After Submit / Refresh
  95. Submit button returns to index page instead of sending data
  96. Using Form to alter PHP variable [closed]
  97. Order form for WP (similar to a wishlist) [closed]
  98. Is it possible to change the error message “This is a required field” for all checkout fields? [closed]
  99. How to use tag in wordpress?
  100. How to reproduce the post format field in a front end form?