Second this.
if ($_POST){
//code
}
Will stop refresh exploit (all browser requests are GET) however it won’t help with cURL.
Second this.
if ($_POST){
//code
}
Will stop refresh exploit (all browser requests are GET) however it won’t help with cURL.