To prevent `install.php` from being accessed in unintended places
@@ -1,6 +1,11 @@
<?php
declare(strict_types=1);
+if (isset($_SESSION) || basename(is_string($_SERVER['SCRIPT_NAME']) ? $_SERVER['SCRIPT_NAME'] : '') !== 'index.php') {
+ header('HTTP/1.1 403 Forbidden');
+ exit('Forbidden');
+}
+
if (function_exists('opcache_reset')) {
opcache_reset();
}
Inverle