add protection

action.php

@@ -77,6 +77,17 @@ class action {
         return $list;
     }
 
+    public function isBlocked($ip) {
+        $dbAction = $this->db->prepare("SELECT ip FROM list UNION SELECT ip FROM blacklist ORDER BY ip ASC");
+        $dbAction->bind_param('i',$ip);
+        $dbAction->execute();
+        $dbAction->store_result();
+        if($dbAction->num_rows() == 0) {
+            return false;
+        }
+        return true;
+    }
+
     private function isListed($ip) {
         $dbAction = $this->db->prepare("SELECT ip FROM list WHERE ip = ?");
         $dbAction->bind_param('i',$ip);

admin.php

@@ -40,7 +40,7 @@ $stats = true;
 $tok = new token;
 $act = new action;
 
-if($act->isListed($_SERVER['REMOTE_ADDR'])) {
+if($act->isBlocked($_SERVER['REMOTE_ADDR'])) {
     http_response_code(403);
     exit;
 }