Who's the best qualified person on WHT to hire to check a few simple scripts for security (contact forms, autoresponders, client's scripts)? I doubt it'd take an expert more than a few minutes.
I have no way of judging the aptitude of an individual due to my complete lack of current understanding of php (and don't want to spend the time right now to change that), so I can't just post a "help wanted" post.
In terms of finding the right person: Ideally you want a security consultant with experience in source code analysis, rather than a server admin or developer.
You should be provided with an honest assessment of the code, with detail where necessary, coupled with either fixes, or recommendations. Try to avoid consultants who rely solely on automated techniques to pick up on vulnerable code, they do miss things.
Good on you for getting on top of it! It's refreshing to see someone being proactive rather than reactive!
If you want a decent audit it will take more than a few minutes to examine and test your forms thoroughly. If you want the cheap solution you can post some code samples on WHT for free review and follow my guidelines that I use in all my project:
1. Use prepared statemtents to minimize the chance of SQL injections.
2. Never echo back what a user has put in your form. Always use a function like htmlentities or something (especially in your contact form).
3. Things like email addresses can be checked for validity before storing them or using them in the autoresponder.
4. Design with the assumption that every visitor wants to "hack" your website
file1.info :: 50GB secure cloudstorage with filemanager