is_numerical?

Mallanag

Hi,

I got the following code on my website:

<?php
$result = @('SELECT * FROM articles order by Title');
if (!$result) {
die('<p>Error performing query: ' . mysql_error() .
'</p>');
}

while ( $row = mysql_fetch_array($result) ) {
echo '<a href="articles.php?ID=' .$row['ID'].'" target="mainFrame">'.$row["Title"].'</a><br />';
}
?>

How would I go about to run an IF-statement to check if what is inserted in the link after ?ID= is only positive whole numbers (ID uses auto_increment)? The reason I need this is because I want to avoid people trying to type in any malicious code in the include link.

Weedpacket

[man]is_numerical[/man] is close.

Mallanag

Yeah, but which variable do I need to check it against?

TheDefender

Look in the manual at [man]is_numeric[/man] and check the user examples. There is an example of how to use [man]ord[/man] with is_numeric (not is_numerical) to accomplish what you want.

Weedpacket

Or cast it to an integer and see if it continues to equal its original value. Then just see if it's >0.