UnknownSec Bypass 403

: /var/www/zenithentcare/stmedicosoftware/ [ drwxrwxr-x ]
name : load_dailycollection1.php <?php require_once "config.php"; session_start(); /*$connect = new PDO("mysql:localhost=3306; dbname=stbookingslotdb", "root", ""); /*function get_total_row($connect) { $query = " SELECT * FROM tbl_webslesson_post "; $statement = $connect->prepare($query); $statement->execute(); return $statement->rowCount(); } $total_record = get_total_row($connect);*/ $limit = '1000'; $page = 1; if($_POST['page'] > 1) { $start = (($_POST['page'] - 1) * $limit); $page = $_POST['page']; } else { $start = 0; } $from=$_POST['fromdate']; $to= $_POST['todate']; $fromdateArray = array(); $fromdateArray=explode('-',$from); $todateArray = array(); $todateArray=explode('-',$to); $fromdateformat = intval($fromdateArray[2])."-".intval($fromdateArray[1])."-".intval($fromdateArray[0]); $todateformat = intval($todateArray[2])."-".intval($todateArray[1])."-".intval($todateArray[0]); $query=" SELECT DATE_FORMAT(transactiondate,'%d-%m-%Y') as transactiondate ,filetype,fileno,showfileno,suhid,name,chargename,total,discount,recamt,paymentmode,bankname,chequeno from v_dailycollection where transactiondate between '".$from."' and '".$to."'"; $filter_query = $query . 'LIMIT '.$start.', '.$limit.''; $statement = $connect->prepare($query); $statement->execute(); $total_data = $statement->rowCount(); $statement = $connect->prepare($filter_query); $statement->execute(); $result = $statement->fetchAll(); $total_filter_data = $statement->rowCount(); if($total_filter_data ==0) { $msg="No Record Found"; echo $msg; return; } if($total_data > 0) { foreach($result as $row) { $data[] = array( 'trandate' => $row['transactiondate'], 'fileno' => $row['fileno'], 'sfileno' => $row['showfileno'], 'uhid' => $row['suhid'], 'name' => $row['name'], 'chargename' => $row['chargename'], 'recamt' => $row['recamt'], 'paymentmode' => $row['paymentmode'], 'bankname' => $row['bankname'], 'chequeno' => $row['chequeno'], ); } } else { } echo json_encode($data); ?>