$username=$_POST["username"];
$email=$_POST["email"];
$sex=$_POST["sex"];
$description=$_POST["description"];
$infoVisivility=$_POST["infoVisivility"];
The thing is that I collect the above data from a form for the user to update their data but I have doubts about this, for example from a file called actualizar.php is the form that will send the information to recojer_datos_actualizados.php in recojer_datos_actualizados.php I already have the session variable of the user defined without having to pick it up from the sample form $usuario=$_SESSION["id"] .
well this is my doubt when I make the sentence ready is necessary to do the following ....?
$username="UPDATE registro SET nombre=? WHERE id=? ";//el id hace referencia al la variable de session de el usuario
or can I do it directly like that?
$username="UPDATE registro SET nombre=? WHERE id='$usuario' ";
Why do I understand that the session variable does not come from the form but that it is already in recojer_datos_actualizados.php , or in any case you have to sanitize it?
I hope you help me with this simple doubt is that it is you world of ready sentences is new for me therefore I have some doubts thanks to community hands!