html on the page is like this - passes a hidden form value and an entered form value to a script.
<FORM ACTION = ""www.mywebsite.com/test/scriptname
<input type="hidden" name="type" value="V">
<input type="text" name="productid" maxlength="6">
<input type="submit" value="get product" name="get product">
If a user enters an alpha character = we get ugly sql errors.