UnknownSec Bypass 403

: /var/www/html/clientpnl/ [ drwxr-xr-x ]
name : order_message.php <?php include "top.php";?> <script type="text/javascript"> $(document).ready(function(){ } ); </script> <!-- /contact-form --> <section class="w3l-contact-main"> <div class="contact-infhny py-5"> <div class="container py-lg-3"> <div class="row align-form-map"> <div class="col-lg-10 title-content text-left mb-lg-4 mb-4"> <h4 class="hny-title mb-3">Welcome, <span><?php echo $_SESSION['username']; ?> !</span>Your grocery order placed successfully.</h4> </div> <div class="col-lg-12 form-inner-cont"> <br> <?php include "../config.php"; $regisid1=$_SESSION["regisid"]; $canteenname=$_SESSION['usercanteenname']; $limit=1; if(isset($_GET['page'])){ $page=$_GET['page']; }else{ $page=1; } $offset= ($page-1)*$limit; $orderno=""; $query= "select max(orderno) as orderno from ordertb where userid='".$regisid1."' and canteenname='".$canteenname."' and isdeleted='0'"; $result = mysqli_query($conn, $query); while($row = mysqli_fetch_array($result)) { $orderno = $row["orderno"]; } $sql="SELECT * from ordertb where orderno='".$orderno."' and userid='".$regisid1."' and canteenname='".$canteenname."' ORDER BY orderno desc "; $result=mysqli_query($conn,$sql) or die("Query Failed."); if(mysqli_num_rows($result)>0){ ?> <table class="table table-bordered content-table"> <thead> <th> S.No. </th> <th> Product Name </th> <th> Qty </th> </thead> <tbody> <?php $serial= 1; while ($row = mysqli_fetch_assoc($result)) { ?> <tr> <td class='id'><?php echo $serial; ?></td> <td><?php echo $row['productname']; ?></td> <td><?php echo $row['qty']; ?></td> </tr> <?php $serial++; } ?> </tbody> </table> <?php } ?> </div> </div> </div> </div> </section> <?php include "footer.php";?>