Basically my question is, if I have a number string, and i’m going to

Question

0

Asked: June 4, 20262026-06-04T14:18:17+00:00 2026-06-04T14:18:17+00:00

Basically my question is, if I have a number string, and i’m going to

0

Basically my question is, if I have a number string, and i’m going to compare it to the database, is that a secure/safe way to check. Or should I just escape my number variables aswell as my strings (like I already do)?

Example:

<?php
    $id = $_POST['id'];
    if(is_numeric($id)){
        //database connectivity.    
    }
?>

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-04T14:18:19+00:00

Editorial Team

2026-06-04T14:18:19+00:00Added an answer on June 4, 2026 at 2:18 pm

“Database” is pretty general, so I’ll assume you’re using MySQL. It’s safe so long as when you insert $id into the query it is escaped (either with mysql_real_escape_string or preferably a prepared statement).

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

Basically my question is, if I have a number string, and i’m going to

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply