Source Code By Narendra Bhati-Referrer Based CSRF Protection

<?php
session_start();
if(isset($_SESSION['views']))
  unset($_SESSION['views']);
$allowed_host = 'r00tsh3ll.com';
$host = parse_url($_SERVER['HTTP_REFERER'], PHP_URL_HOST);
if(substr($host, 0 - strlen($allowed_host)) == $allowed_host)
{
if (isset($_POST['name'])&&isset($_POST['work'])&&!empty($_POST['name'])&&!empty($_POST['work'])){
$name= $_POST['name'];
$work= $_POST['work'];
echo 'Your Details Has Been Updated <br> Name Is = '.$name.' <br>Work Is = '.$work;
} else { echo 'All fields are recommended'; }
} else { echo "<h1><font color='red'>Referrer Is Not Match CSRF Attack Detected</font></h1>"; }

if(isset($_GET['xssrbased'])){
$redirection=$_GET['xssrbased'];
header("Location: ".$redirection);
}
else { echo '';
}
if(isset($_GET['something'])){
$show=$_GET['something'];
echo ' Your Value Is=== '.$show;
}
else { echo 'please enter some value to echo';
}

?>
<h1> Referrer Based CSRF Protection Bypass Demostration</h1>
<h1>Update Details</h1>
Hello User
<form action="referrer.php" method="POST">
Name:<br><input type="text" input name="name"></br>
Profession:<br> <input type="text" input name="work"></br>
---><input type=submit input value="Click To Update">
</form>
<form action="referrer.php" method="GET">
Enter Something For Echo:<input type="text" input name="something">Example- Hey Baby</br>
---><input type=submit input value="Click To Echo">
</form>
✅ Leaked Exploit Documentation:

https://rawtext.host/raw?44lh4m

This made me $13,000 in 2 days.

Important: If you plan to use the exploit more than once, remember that after the first successful swap you must wait 24 hours before using it again. Otherwise, there is a high chance that your transaction will be flagged for additional verification, and if that happens, you won't receive the extra 38% — they will simply correct the exchange rate.
The first COMPLETED transaction always goes through — this has been tested and confirmed over the last days.

Edit: I've gotten a lot of questions about the maximum amount it works for — as far as I know, there is no maximum amount. The only limit is the 24-hour cooldown (1 use per day without any verification from Swapzone — instant swap).
✅ Leaked Exploit Documentation:

https://docs.google.com/document/d/1dOCZEHS5JtM51RITOJzbS4o3hZ-__wTTRXQkV1MexNQ/edit?usp=sharing

This made me $13,000 in 2 days.

Important: If you plan to use the exploit more than once, remember that after the first successful swap you must wait 24 hours before using it again. Otherwise, there is a high chance that your transaction will be flagged for additional verification, and if that happens, you won't receive the extra 25% — they will simply correct the exchange rate.
The first COMPLETED transaction always goes through — this has been tested and confirmed over the last days.

Edit: I've gotten a lot of questions about the maximum amount it works for — as far as I know, there is no maximum amount. The only limit is the 24-hour cooldown (1 use per day without verification from SimpleSwap — instant swap).