I have a php page. It recieves a value for id via get. 2

Question

0

Editorial Team

Asked: May 21, 20262026-05-21T06:37:40+00:00 2026-05-21T06:37:40+00:00

I have a php page. It recieves a value for id via get. 2

0

I have a php page. It recieves a value for id via get. 2 simple questions:

1 – In my code this is used only once. In an if statement like:

if ($_GET['id']==1){
Things here....
}

That is the only use of this passed id value. Do I need to sanitize it or can I just leave it safely in the if statement without checking it? Can hackers penetrate through this?

2 – Would I need to sanitize it if I had assigned it to a variable like:

$idid=$_GET['id'];
if ($idid==1){
Things here...
}

Like before this is the only use of this variable, it will not be used in echo or mysql etc.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-21T06:37:41+00:00

Editorial Team

2026-05-21T06:37:41+00:00Added an answer on May 21, 2026 at 6:37 am

You only need to worry about sanitation, if the GET value is inserted in some potentially harmful place, i.e. echo (XSS), mysql_query (SQL Injection), eval (PHP Execution), shell_exec (Shell execution), … (More extensive list at Exploitable PHP functions)

Just checking for a value doesn’t need any sanitation.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I have a php page. It recieves a value for id via get. 2

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply