UnknownSec Bypass 403

: /var/www/zenithentcare/upanel/ [ drwxrwxr-x ]
name : list_notification.php <?php include "top.php";?> <div id="layoutSidenav_content"> <main> <div class="container-fluid px-4"> <h1 class="mt-4">Notification List</h1> <!-- <ol class="breadcrumb mb-4 justify-content-between"> <li class="breadcrumb-item active">List of booked appointment.</li> <a class="btn btn-primary" href="add_appointment.php">Add Appointment</a> </ol> --> <div class="card mb-4"> <div class="card-header"> <i class="fas fa-table me-1"></i> Notification </div> <div class="card-body"> <?php //require_once "../config.php"; $curdate=date('Y-m-d'); $sql="select notify.id,notify.message, notify.consultantid, notify.notifydate, mastertb.accountname from notificationdetailstb as notify, mastertb where notify.consultantid=mastertb.accountmasterid and mastertb.identifier=3 and notify.mobileno='".$_SESSION['mobileno']."' and notify.isdeleted='0'"; // $sql= "Select app.appid,app.appno,DATE_FORMAT(app.appdate, '%d-%m-%Y') as appdate,app.name,app.age,app.gender,app.mobileno,cons.AccountName as consultant,case when isdeleted=0 then 'Booked' else 'Cancel' end as isdeleted from appointmenttb as app,accountmastertb as cons // where app.consultantid=cons.accountmasterid and app.appdate='".$curdate."'"; $result=mysqli_query($conn, $sql) or die("Query Failed."); if (mysqli_num_rows($result)>0) { ?> <table id="datatablesSimple"> <thead> <tr> <th>Message</th> <th>Dr. Name</th> <th>Notify Date</th> <th></th> </tr> </thead> <tbody> <?php $serial= 1; while ($row = mysqli_fetch_assoc($result)) { ?> <tr> <td><?php echo $row['message']; ?> </td> <td> <?php echo $row['accountname']; ?> </td> <td> <?php echo $row['notifydate']; ?> </td> <td align="center"> <div class="dropdown" align="left"> <p> <a href='delete_notification.php?id=<?php echo $row["id"]; ?>'><i class=" fa fa-trash"></i> </a></p> </div> </td> </tr> <?php $serial++; } } ?> </tbody> </table> </div> </div> </div> </main> <?php include "footer.php";?>