http_referrer issue when detecting where site comes from and allow if from allowed host

This is from the PHP website. This may be the problem.

‘HTTP_REFERER’

The address of the page (if any) which referred the user agent to the
current page. This is set by the user agent. Not all user agents will
set this, and some provide the ability to modify HTTP_REFERER as a
feature. In short, it cannot really be trusted.

Related Posts:

  1. PHP – setcookie(); not working
  2. How to share cookies and sessions between domain and subdomain?
  3. Is it possible to transfer a WordPress session to a different browser via query string?
  4. How does REST API cookie authentication work in WP 4.7?
  5. Why does it say: ‘Cookies are blocked or not supported’?
  6. Place a cookie when a specific page has been viewed?
  7. How to detect a user that is not logged in
  8. How to change cookie name
  9. Using wp_set_auth_cookie for custom user account system
  10. Should wordpress_logged_in cookie exist while logged out?
  11. WP_Http_Cookie destroys cookie value through urldecode()
  12. Worpdress PHPSESSID / EU law
  13. Get restrict content by submitting Gravity Forms
  14. Website Loads Twice Unnecessarily
  15. Do I use cookies?
  16. How to transition cookies from .subdomain.domain.com to .domain.com with minimal impact on users?
  17. Creating intro page in wordpress
  18. Hide/Show content based on cookie
  19. ERROR: Cookies are blocked or not supported by your browser
  20. What is cookie “U” from domain “.adsymptotic.com” found on the WordPress page? [closed]
  21. Serving Cookies From A Different Domain or Sub-Domain
  22. How to fix samesite attribute in wordpress for chrome errors?
  23. Secure wordpress_logged_in cookie
  24. Deleting cookie to logout
  25. Show greetings on first time visitors?
  26. Unset a Cookie on Successful Gravity Forms form Submission [closed]
  27. How set a cookie from PHP and get it without refresh
  28. Why wordpress cookies name contains HASH
  29. Cookie only detected when visitor is logged in
  30. Change the user is logged in cookie name
  31. Disconnect automattically after X minutes
  32. can we share user login in 2 wordpress installs in 2 subdomains on one server? [duplicate]
  33. background/font size change and remember
  34. WordPress cookies
  35. Modifying request $_COOKIE
  36. Block google maps from loading until user agrees to cookies with Elementor
  37. Need help setting cookies with multiple value [closed]
  38. Enable WordPress to share cookies between domain.com and sub.domain.com
  39. Setting Cookies
  40. How I can share cookies from my dimain to subdomain?
  41. How to setup cookie free domain for wp-includes?
  42. WordPress authentication cookie and ajax calls
  43. COOKIE_ID with username appended
  44. Setting Cookies For Form Autofill
  45. What are your thoughts on overriding the PHP builtin setcookie() function to control whether or not WP creates cookies
  46. How to make use of Transient API as cookie
  47. Issues with set cookie
  48. Accept or deny cookies – how to?
  49. How to set a Cookie-Free Domain with WordPress?
  50. Is it possible to use cookie-free domains in WordPress?
  51. Passing cookies when using wp_remote_get
  52. store URL global before we redirect
  53. Setting cookies in WP REST API requests
  54. Detect if authentication is set to “remember” a user being logged on
  55. Store value in cookie
  56. Set Short Automatic Logout Time for One User
  57. WordPress Post Voting – Vote once per IP on entire site
  58. How to change WordPress cookies to be session-only
  59. wordpress can’t read a cookie?
  60. Do I need a Cookie consent on a basic WordPress site?
  61. Page specific cookie
  62. will creating a static folder in the root directory serve the purpose of loading the static content from cookieless domain?
  63. Set cookie with taxonomy name
  64. Best method to show modal only once
  65. Cookie with referral URL [closed]
  66. How to keep a variable in COOKIE or GET query string?
  67. Cookie Details Requested
  68. Cookies in template
  69. Cookie error. No possibility to define my cookie
  70. Why sometimes wp_redirect() reset cookie?
  71. Favicon not loading until cookies are accepted?
  72. can you help review CCCP (Conditional Cookie Content Post) and help to create a block?
  73. COOKIE_DOMAIN chaos
  74. Setup cookie on Chrome even without HTTPS
  75. PHP cookie control does not work correctly
  76. How can I get an updated cookie in header.php?
  77. Setting a Custom Cookie in WordPress only for Logged In Customer/User (non-admin)
  78. How are sites using wordpress hiding wordpress cookies that have “wp” or “wordpress” in the cookie name?
  79. Correct user session/cookie handling with external site connection in wordpress
  80. if is_page() is not working with wp_redirect
  81. Checking for cookies returns correct result only inside Elementor Editor
  82. How to save history in the client’s browser without login? [closed]
  83. Automatically Log Out UserX when visiting WooCommerceStore
  84. Entirely Cookieless WordPress?
  85. is_user_logged_in() returns different values on different pages
  86. When ever wordpress home page refreshes the code is not reading the cookie as set anymore
  87. detect referr page
  88. Looking to load a different template part on every load/refresh
  89. Cookie is not set
  90. Capture and display users name
  91. Why isn’t my cookie setting in my function?
  92. WordPress wp-login.php cookie error (WordPress Version 4.2.9)
  93. Logged In cookie gets saved but not Auth cookie
  94. set cookies or let system know a user has been on site
  95. setcookie not working when defined with ‘/’ but working if not defined
  96. How to use Cookie or Session php for one page and just a password
  97. How to get the id dynamically to store cookies
  98. WordPress keep logged in after browser close
  99. How to disable redirect on test/staging copy of wordpress site
  100. Keep users logged in Without Remember Me