UnknownSec Bypass 403

: /var/www/zenithentcare/wapfolder/ [ drwxrwxr-x ]
name : get_allappointment.php <?php header('Content-Type: application/json'); header('Access-Control-Allow-Origin:*'); /*$data=json_decode(file_get_contents("php://input"),true); $productcode=$data["pcode"]; $softwarename=$data["sname"]; $softwareversion=$data["sversion"];*/ $consultentid=isset($_GET['accountid']) ? $_GET['accountid']:die(); $appdate=isset($_GET['appdate']) ? $_GET['appdate']:die(); include "../config.php"; $sql="SELECT appid,regid,uhid,name,age,ageinyear,gender,mobileno,appno,DATE_FORMAT(appdate, '%d-%m-%Y') as appdate, case when paymentstatus=0 then 'Unpaid' when paymentstatus=1 then 'Paid' else 'Followup' end paymentstatus FROM appointmenttb where appdate='".$appdate."' and consultantid='".$consultentid."' "; $result=mysqli_query($conn, $sql) or die("SQL Query Failed."); $output=mysqli_fetch_all($result, MYSQLI_ASSOC); echo json_encode($output); ?>