add protection

admin.php

@@ -41,10 +41,10 @@ $stats = true;
 $tok = new token;
 $act = new action;
 
-/*if($act->isBlocked($clientIP)) {
+if($act->isBlocked($clientIP)) {
     http_response_code(403);
     exit;
-}*/
+}
 
 if (!$tok->isAdmin($token)) {
     $act->block($clientIP);
@@ -52,7 +52,7 @@ if (!$tok->isAdmin($token)) {
     exit;
 }
 if($stats == true) {
-    (new stats)->log($ip,$action,$token);
+    (new stats)->log($clientIP,$ip,$action,$token);
 }
 switch($action) {
     case 'deluser':

index.php

@@ -25,7 +25,7 @@ if (!(new token)->isReporter($token)) {
     exit;
 }
 if($stats == true) {
-    (new stats)->log($ip,$action,$token);
+    (new stats)->log($clientIP,$ip,$action,$token);
 }
 switch($action) {
     case 'delist':

stats.php

@@ -6,9 +6,9 @@ class stats {
         $this->db = new db();
     }
 
-    public function log($ip,$action,$token) {
-        $dbAction = $this->db->prepare("INSERT IGNORE INTO stats (ip,action,token) VALUES (?,?,?)");
-        $dbAction->bind_param('iss',$ip,$action,$token);
+    public function log($clientIP,$ip,$action,$token) {
+        $dbAction = $this->db->prepare("INSERT IGNORE INTO stats (clientip,ip,action,token) VALUES (?,?,?,?)");
+        $dbAction->bind_param('iiss',$clientIP,$ip,$action,$token);
         return $dbAction->execute();
     }
 }