i am using a query look like this:
this address "xxx.com/search.php" send an id number to "xxx.com/search.myskils.php?id=157" (and second address use GET method)
user can see every query with change of id number at this code.
how can i prevent at this case?
this is very terrible. because user can delete every record in db with change of id number.