Members AREA Solution wanted
I want to set up a members area, with, DB. Everything works fine.
The problem is, if I store other things like images in other tables that a related to the member ID its not safe.
I need to make sure, that the member only delete/edit his own images.
So I got a table members and a table images.
The relation is the member ID (stored in the session during login).
But, the problem is the image ID.
this is the critical thing. Cause I need to transmit it via the URL. ?imageID=6
So, anyone can change the imageID and delete random images from other ussers.
How can I fix that?