OMG, I have miles of code. I don't even know where to begin. I've already manually gone through it, and everything seems to be cleaned.
Question though...is it enough if I'm using GET for an id, and then do a numeric check on it? So I'm doing this:
if (isset($GET('id')) && (isnumeric($_GET('id')).....
before I pass the contents of GET to a query.