UnknownSec Bypass 403

: /var/www/zenithentcare/stmedicosoftware/ [ drwxrwxr-x ]
name : excelUpload.php <?php require('library/php-excel-reader/excel_reader2.php'); require('library/SpreadsheetReader.php'); require('config.php'); if(isset($_POST['Submit'])){ $mimes = ['application/vnd.ms-excel','text/xls','text/xlsx','application/vnd.oasis.opendocument.spreadsheet']; //if(in_array($_FILES["file"]["type"],$mimes)){ $uploadFilePath = 'uploads/'.basename($_FILES['file']['name']); move_uploaded_file($_FILES['file']['tmp_name'], $uploadFilePath); $Reader = new SpreadsheetReader($uploadFilePath); $totalSheet = count($Reader->sheets()); echo "You have total ".$totalSheet." sheets". $html="<table border='1'>"; $html.="<tr><th>Title</th> <th>Description</th> <th>Description</th> <th>Description</th> </tr> "; /* For Loop for all sheets */ for($i=0;$i<$totalSheet;$i++){ $Reader->ChangeSheet($i); $k=0; foreach ($Reader as $Row) { $html.="<tr>"; $title=""; $description=""; $description1=""; $description2=""; $ddate=""; $title = isset($Row[0]) ? $Row[0] : ''; $description = isset($Row[1]) ? $Row[1] : ''; $description1 = isset($Row[2]) ? $Row[2] : ''; $description2 = isset($Row[3]) ? $Row[3] : ''; $ddate = isset($Row[4]) ? $Row[4] : ''; $html.="<td>".$title."</td>"; $html.="<td>".$description."</td>"; $html.="<td>".$description1."</td>"; $html.="<td>".$description2."</td>"; $html.="<td>".$ddate."</td>"; $html.="</tr>"; $query = "insert into prod_list_1(p_bench,p_name,p_price,p_reason,pdate) values('".$title."','".$description."','".$description1."','".$description2."','".$ddate."')"; $result=insertrecord($conn,$query); //$mysqli->query($query); } } $html.="</table>"; echo $html; echo "<br />Data Inserted in dababase"; //}else { //die("<br/>Sorry, File type is not allowed. Only Excel file."); //} } ?>