Prevent post pages being accessed directly

2026-02-28 10:54:52 +00:00 · 2025-01-09 16:09:39 +00:00
parent ec54b28b02
commit a67de7a8f1
91 changed files with 190 additions and 16 deletions
--- a/post/user/expense.php
+++ b/post/user/expense.php
@@ -4,6 +4,8 @@
 * ITFlow - GET/POST request handler for expenses
 */

+defined('FROM_POST_HANDLER') || die("Direct file access is not allowed");
+
 if (isset($_POST['add_expense'])) {

    require_once 'post/user/expense_model.php';