I have this simple MYSQL query:
SELECT * FROM table WHERE date > now() - INTERVAL $hours HOUR
$hours
is a PHP GET variable. Do I have to do any check on this variable before using it in the query to avoid SQL injection or is it secure enough? I use PDO statements