Email QR Format

Email QR Code
Decoder & Reader

Decode email QR codes (mailto: format) to instantly reveal the recipient address, pre-filled subject, and message body. Upload an image or scan with your camera β€” always private.

Upload Email QR code

Drop your QR image here or click to browse β€” Ctrl+V paste also works

PNGJPGWEBPGIFSVG

Camera is off

Click Start Camera to begin scanning

Email Details 

              

              
            

          

        

      


      

        

          

            
            Recent Scans
          

          
        

        

      

    

  


  
  

    

      

        

          
Understanding Email QR Codes

          
Email QR codes encode a mailto: URI β€” an internet standard defined in RFC 6068 that instructs devices to open an email composition window pre-populated with the encoded details. When scanned on a mobile device, it automatically opens the default mail app.

          
A full mailto: URI can look like:

          
mailto:[email protected]?subject=Enquiry&body=Hi%20there%2C%20I%20would%20like%20to...

          
Our decoder parses the address, subject, and body fields and displays them clearly β€” so you know exactly what email would be sent before acting on it.


          
Fields an Email QR Code Can Contain

          
    
            
  • To: One or more recipient email addresses
    • 
            
  • CC: Carbon copy recipients
    • 
            
  • BCC: Blind carbon copy recipients
    • 
            
  • Subject: Pre-filled email subject line
    • 
            
  • Body: Pre-written message body text
    • 
          


          
Common Use Cases

          
    
            
  • Business cards with a "contact us" email QR code
    • 
            
  • Product packaging for customer support or warranty registration
    • 
            
  • Conference and event feedback collection
    • 
            
  • Marketing campaigns with pre-filled enquiry forms
    • 
            
  • Restaurant menus with order-by-email links
    • 
          

        


        

          
Email QR Code Security Risks

          
While email QR codes are lower risk than URL-based QR codes (they don't navigate a browser), they carry their own specific attack vectors that users should understand before scanning unknown codes.


          
Social Engineering via Pre-filled Emails

          
A malicious email QR code can pre-populate a message body with text designed to impersonate the victim β€” for example, a pre-written authorization message or a request for sensitive account information. When the victim taps "Send" without reading the pre-filled content carefully, they unknowingly send the attacker's crafted message from their own email account.


          
Email Harvesting

          
Posting QR codes in public that encode a mailto: link to a legitimate-looking address is a way for spammers to collect active email addresses. When someone scans and sends even a blank message, the attacker confirms the sender's email is active and in use.


          
BCC Exfiltration

          
A mailto: URI can include a BCC field that silently copies a third party on any email sent. Victims scanning the QR code may send what they believe is a private communication while unknowingly copying an attacker's address. Our decoder reveals all BCC fields so you can spot this before acting.


          
Best Practices

          
    
            
  • Always decode and review the full mailto: content before sending
    • 
            
  • Check the BCC field carefully β€” it should be empty for most legitimate uses
    • 
            
  • Read the pre-filled subject and body before tapping Send
    • 
            
  • Be suspicious of email QR codes in unsolicited physical mail
    • 
          

        

      

    

  


  
  

    

      

        FAQ
        
Email QR Decoder FAQ

      

      

        

          
What does an email QR code look like when decoded?

          
The raw content starts with mailto: followed by the email address and optional query parameters for subject, body, cc, and bcc. Our decoder parses these and displays each field with a clear label.

        

        

          
Can an email QR code contain multiple recipients?

          
Yes. The mailto: specification allows comma-separated email addresses in the To, CC, and BCC fields. Our decoder will display all recipients found in the QR code.

        

        

          
Is the decoded email content stored anywhere?

          
No. All decoding is done entirely in your browser. Nothing is sent to any server. The decoded content is only stored in your browser's localStorage for scan history, which you can clear at any time.

        

        

          
What is the difference between a mailto: QR code and a URL QR code?

          
A URL QR code (starting with http:// or https://) opens a web browser when scanned. A mailto: QR code opens your email app with a pre-filled compose window. Neither automatically sends data β€” user action is required to proceed in both cases.

        

        

          
Can I decode an email QR code from a screenshot?

          
Yes. Take a screenshot of the QR code and upload it using the Upload tab. This works for QR codes in PDF files, emails, web pages, and any other digital source β€” just screenshot the page containing the QR code first.

        

      

    

  


  
  

    

      

        More Tools
        
Decode Other QR Code Types

      

      

        
πŸ–ΌοΈ
From Image

        
πŸ“·
Camera Scan

        
πŸ“Ά
WiFi QR

        
πŸ‘€
vCard Contact

        
🌐
URL / Website

        
πŸ“„
Plain Text