diff --git a/app/Http/Controllers/MailController.php b/app/Http/Controllers/MailController.php
index e1bbf864d97f1d3b619f35bd4e5e9f21f2a0f385..4bc0844c984003af577af32a5d3f3d5c1324e9b2 100644
--- a/app/Http/Controllers/MailController.php
+++ b/app/Http/Controllers/MailController.php
@@ -67,6 +67,12 @@ class MailController extends Controller
         $messageToUser = "";
         $messageType   = ""; # [success|error]
 
+        #SicherheitsÃ¼berprÃ¼fung (Wir wurden in letzter Zeit ziemlich mit Mails zugespammt
+        $hash = md5(date('Y') . date('m') . date('d'));
+        if ($request->input('dt') !== $hash) {
+            return redirect(url('spende'));
+        }
+
         # Folgende Felder werden vom Spendenformular als Input Ã¼bergeben:
         # Name
         # Telefon
diff --git a/resources/views/spende/spende.blade.php b/resources/views/spende/spende.blade.php
index 7d99121f38e772cba4b46087496590fc4d4eeb41..a97f59e453f1be3b8d4632531aa15af064e27a6a 100644
--- a/resources/views/spende/spende.blade.php
+++ b/resources/views/spende/spende.blade.php
@@ -42,7 +42,7 @@
 		<h3 id="lastschrift">{!! trans('spenden.lastschrift.1') !!}</h3>
 		<p>{!! trans('spenden.lastschrift.2') !!}</p>
 		<form role="form" method="POST">
-			{{ csrf_field() }}
+			<input type="hidden" name="dt" value="{{ md5(date('Y') . date('m') . date('d')) }}" />
 			<div class="form-group donation-form-group">
 				<label for="Name">{!! trans('spenden.lastschrift.3') !!}</label>
 				<input type="text" class="form-control" id="Name" required="" name="Name" placeholder="{!! trans('spenden.lastschrift.3.placeholder') !!}">
diff --git a/resources/views/spende/spendenaufruf.blade.php b/resources/views/spende/spendenaufruf.blade.php
index ee62aedd511323e954daedf26bfd58b6a0d1d23d..70b68d2e6748e40dcdef9778c8c02dcb826a8bf0 100644
--- a/resources/views/spende/spendenaufruf.blade.php
+++ b/resources/views/spende/spendenaufruf.blade.php
@@ -90,7 +90,7 @@ das MetaGer-Team im SUMA-EV
 		<h2 id="lastschrift">{{ trans('spenden.lastschrift.1') }}</h2>
 		<p>{{ trans('spenden.lastschrift.2') }}</p>
 		<form role="form" method="POST" action="{{ action('MailController@donation') }}">
-			{{ csrf_field() }}
+			<input type="hidden" name="dt" value="{{ md5(date('Y') . date('m') . date('d')) }}" />
 			<div class="form-group" style="text-align:left;">
 				<label for="Name">{{ trans('spenden.lastschrift.3') }}</label>
 				<input type="text" class="form-control" id="Name" required="" name="Name" placeholder="{{ trans('spenden.lastschrift.3.placeholder') }}">