PHP MYSQL仅当php会话变量存在时才这样做

The code you are trying to create has some serious (and less serious) problems that you need to fix right away if you ever want to make your site usefull.

First of, dont use mysql_ function but switch to mysqli or pdo. mysql functions have been deprecated.

Also you are inserting user input directly into your query. This causes some serious SQL injection problems. Always make sure to validate and escape user input.

To create a query like you want I'd use:

<?php
$name = $_GET['name'];

//validate $name according to your choice of mysql provider. EG: mysqli_real_escape_string
//this is just basic validation. make sure you also add other types of validation. If a name is always alphanumeric, make sure you also check that it is before using it.

/*
if you dont validate and I would enter my name like: hugo' OR 1=1 --
I would be able to access any record in your database. And that is just a harmless example.
*/

$query = "SELECT field1, field2 FROM table WHERE name = '".$name."'"

//for sake of simplicity I assume the id is numeric
if (!empty($_SESSION['session_id']) AND is_numeric($_SESSION['session_id'])) { 
   $query .= " and id = '".$_SESSION['session_id']."'";
}

//exec query
?>