$value) { $get[$key] = filter($value); //get variables are filtered. } if(isset($_POST['doVerify'])) { if($_POST['doVerify']=="Verify Now") { $registration_number = $_POST['registration_number']; $stm = $db->query("select * from student_details where tracking_id='$registration_number'"); $dups = $stm->rowCount(); if($dups > 0) { $stm = $db->prepare("SELECT * FROM student_details where tracking_id='$registration_number'"); $stm->execute(); $row_settings = $stm->fetch(PDO::FETCH_ASSOC); header("Location: verify-registration.html?cid=".$row_settings['order_id']); exit(); } else { $err[]="Sorry! no registration detail found please enter a valid Tracking ID."; } } } ?>