Home › Forums › Back End › Nice Profile URL? › Re: Nice Profile URL?
February 2, 2012 at 2:20 pm #96029
I can’t see any reason for it being there.
Also you need to sanitize your get variables to prevent SQL injection
so the line that reads
$id = $_GET[“id”];
needs to become
$id = mysql_real_escape_string($_GET[“id”]);
or you are leaving yourself wide open when $id gets used in a query.