scratch

Subversion Repositories:

 /text.php
@@ -11,6 +11,31 @@
 ### Load configuration.
 $config = spyc_load_file('config.yaml');
+#### Script restrictions.
+if(
+    (
+        !isset($_SERVER['HTTP_X_REQUESTED_WITH']) ||
+        empty($_SERVER['HTTP_X_REQUESTED_WITH']) ||
+        strtoupper($_SERVER['HTTP_X_REQUESTED_WITH']) != 'XMLHTTPREQUEST'
+    )
+        ||
+    (
+        (
+            !isset($_SERVER['HTTP_REFERER']) ||
+            empty($_SERVER['HTTP_REFERER'])
+        )
+            &&
+        (
+            #strtoupper($_SERVER['HTTP_REFERER']) != strtoupper($config['URL_PATH'].'FILE.HTML') ||
+            strtoupper($_SERVER['HTTP_REFERER']) != strtoupper($config['URL_PATH'].'TEXT.HTML')
+        )
+    )
+)
+{
+    http_response_code(403);
+    die('Forbidden.');
+}
 if(!isset($_POST['fingerprint']) or empty($_POST['fingerprint']) or
     !isset($_POST['action']) or empty($_POST['action'])) {
     http_response_code(500);

Compare Path:	Rev
With Path:	Rev