jpsagrisolution.com - UnknownSec 403

UnknownSec Bypass 403

: /var/www/zenithentcare/cpanel/ [ drwxrwxr-x ]
name : get_appointmentdetails.php
 <?php
require_once "../config.php";

$id = $_POST['id'];
  $data[]="";
  $departmentid="";
  $noofday=0;
$query = "SELECT * from appointmenttb  where appid ='".$id."'";
$result = mysqli_query($conn, $query);
while($row = mysqli_fetch_array($result))
{
  $data["appid"] = $row["appid"];
  $data["regid"] = $row["regid"];
  $data["uhid"] = $row["uhid"];
  $data["appno"] = $row["appno"];
  $data["appdate"] = $row["appdate"];
  $data["name"] = $row["name"];
  $data["gender"] = $row["gender"];
  $data["age"] = $row["age"];
  $data["ageinyear"] = $row["ageinyear"];
  $data["mobileno"] = $row["mobileno"];
  $data["consultantid"] = $row["consultantid"];
  $data["status"] = $row["isdeleted"];


  $data["isnewpatient"]=$row["neworold"];
  $opdate= $row["appdate"];//date_format($row["appdate"],"Y-m-d");
  $uhid= $row["uhid"];
    $consulid= $row["consultantid"];
  $query = "select *  from mastertb where accountmasterid ='".$row["consultantid"]."'
           and status='0'";

  $result = mysqli_query($conn, $query);
  while ($row = mysqli_fetch_array($result)) {
    $departmentid= $row["departmentid"];
    $normalfee= $row["normalfee"];
    $data["amt"] = $row["normalfee"];
      $noofday=  intval($row["validitydays"])-1;
   $vailddays=  $noofday.' days';

   if($uhid=="" || $uhid==null)
   {
   $expirydate= date('Y-m-d', strtotime($opdate. $vailddays));
   $data["expirydate"]=$expirydate;

    }

    else {

       $data["expirydate"]=date('Y-m-d', strtotime($opdate. $vailddays));

  $flag=false;
  $query1 = "select * from patientdetailstb  where uhid='".$uhid."' and examinedbyid='".$consulid."' and isdeleted=0 order by opddate Desc Limit 1 ";

 $result1 = mysqli_query($conn, $query1);
 while ($row1=mysqli_fetch_array($result1)) {

   $lastexpirydate=   strtotime($row1["expirydate"]);
   $currentdate=     strtotime($opdate);
   if($lastexpirydate>= $currentdate)
   {
          $data["amt"]="0";
          $data["expirydate"]= $row1["expirydate"];
          $flag=true;
   }

   if($flag==false)
   {
      // $expirydate= date('Y-m-d', strtotime($opdate. $vailddays));
       $data["expirydate"]=date('Y-m-d', strtotime($opdate. $vailddays));


   }

}



    }
  }
  $data["departmentid"]=$departmentid;
  $data["normalfee"]=  $normalfee;
 }
echo json_encode($data);
?>