CSE-Media/core/controllers/session.php

<?php 

if(empty($_SESSION["USER"]["token"]) OR (isset($_SESSION["USER"]["token"]) AND !cms::checkToken($_SESSION["USER"]["token"]))){
    header("Location: https://" . DOMAIN_CMS);
    exit();
}