You need to watch the script as:
Quote:
On the api.php:
// make sure that the $_POST is coming from your domain and that you are not being
// spammed.
if ( isset( $_POST['clicked_link'] ) && !empty( $_POST['clicked_link'] ) ){
// insert it into a database
//
}
|
could be easily spammed by being posted to by a cURL process :D, you need some sort of check for the requester to make sure it is your server
Otherwise, nice bit of code
Rob