UnknownSec Bypass 403

: /var/www/stbilling/cpanel/ [ drwxrwxr-x ]
name : get_bill_details.php <?php require_once("../config.php"); /*function get_total_row($connect) { $query = " SELECT * FROM tbl_webslesson_post "; $statement = $connect->prepare($query); $statement->execute(); return $statement->rowCount(); } $total_record = get_total_row($connect);*/ $billno= $_POST['tembillno']; $query= " select * from v_temptransactiondetails where mainvoucherno='".$billno."' and isdeleted=0 order by rowno"; $filter_query = $query; $statement = $connect->prepare($query); $statement->execute(); $total_data = $statement->rowCount(); $statement = $connect->prepare($filter_query); $statement->execute(); $result = $statement->fetchAll(); $total_filter_data = $statement->rowCount(); $sno=1; if ($total_filter_data ==0) { $msg="No Record Found"; echo $msg; return; } $output = ' <table class="table table-striped table-bordered"> <tr> <th>S.No.</th> <th>Product Name</th> <th>Hsn Code</th> <th>Qty</th> <th>Unit</th> <th>Rate</th> <th>Taxable Value</th> <th>Amount</th> <th>TranID</th> <th></th> <th></th> </tr> '; if ($total_data > 0) { foreach ($result as $row) { $output .= ' <tr> <td>'.$row["rowno"].'</td> <td>'.$row["productname"].'</td> <td>'.$row["hsncode"].'</td> <td>'.$row["qty"].'</td> <td>'.$row["unit"].'</td> <td>'.$row["rate"].'</td> <td>'.$row["taxablevalue"].'</td> <td>'.$row["amount"].'</td> <td>'.$row["tranid"].'</td> <td><button onclick="edit('.$row["transactiondetailsid"].');" ><i class=" glyphicon glyphicon-pencil"></i></button></td> <td><button onclick="remove('.$row["transactiondetailsid"].');"><i class="glyphicon glyphicon-trash"></i></button></td> </tr> '; $sno=$sno+1; } } else { $output .= ' <tr> <td colspan="8" align="center">No Data Found</td> </tr> '; } $output .= ' </table> <br /> '; echo $output; ?>