Good morning, My question arises because of increasing the security of my application. The scenario is as follows: A user with authorization sees the listing of several items (ex: list-item.php), and can delete the item you want. The process of deleting is through a query string (Ex: delete-item.php? Id = 14)
Is there any way to restrict / block manipulation in this id case? for example if the account of the user is stolen and the person has bad intentions, you can simply change the id in the query string and delete several items. Basically I wonder if there is a solution to block the manipulation of the query and only accept the query that comes from the page list-item.php