Siro/backend/auth/captin/getAccount.php

<?php
require_once __DIR__ . '/../../connect.php';

$driverID = filterRequest("id");

// تحقق أن المعرف رقم صحيح
if (!is_numeric($driverID)) {
    jsonError("Invalid driver ID");
    exit();
}

// استخدم bindParam لتفادي حقن SQL
$sql = "SELECT `accountBank` FROM `driver` WHERE `id` = :id";
$stmt = $con->prepare($sql);
$stmt->bindParam(':id', $driverID, PDO::PARAM_INT);
$stmt->execute();

if ($stmt->rowCount() > 0) {
    $row = $stmt->fetchAll(PDO::FETCH_ASSOC);
    jsonSuccess($row);
} else {
    jsonError("No account bank record found");
}
?>