Hi Suvek,

that's insecure code:
Quote Originally Posted by Suvek View Post
HTML Code:
$query2 = mysql_query("SELECT * FROM image WHERE GID = '".$_GET['galleryid']."'");
Such a code is open to SQL injections, please don't do that.

see also: Wikipedia article about SQL injection

Remi