diff --git a/pages/account/28.php b/pages/account/28.php
index c81e687..e99c7a1 100644
--- a/pages/account/28.php
+++ b/pages/account/28.php
@@ -13,7 +13,7 @@
     PARTICULAR PURPOSE.  See the License for more details.
 */ ?>
 <?
-	$query = "select * from `orginfo` where `id`='".$_REQUEST[orgid]."'";
+	$query = "select * from `orginfo` where `id`='".intval($_REQUEST[orgid])."'";
 	$row = mysql_fetch_assoc(mysql_query($query));
 ?>
 <form method="post" action="account.php">