The question is good, but here we run into the main problem of PHP - ALL tutorials on the Internet, and especially videos - show how to write hellish code from the last century.
1. Getting the value from the address bar
To get the value of the variable that was passed in the query string (this is the one after the question mark), you need to refer to the $_GET variable.
That is, in this case, you can write $id = $_GET['id']. The name of the received variable ($id) can be anything and does not have to match the passed value. But in the $_GET array index, of course, you need to write exactly the name that is in the address bar. That is, if site.com/?id=1, then $_GET['id'] will have the value 1.
2. Data validation
Further, it is very desirable to check that we got what we wanted in the variable, and also that we got at least something at all.
First, you need to check if the $_GET array contains the required key. In this case, this can be done using the isset () operator (although in general it is not recommended for checking the presence of keys in arrays)
. error.
Then, since id can only be an integer greater than zero, it's better to check that too and throw an error too.
3. Connecting to the database.
in "config.php" it should not be written what is there now, but this (with its own connection parameters, of course)

mysqli_report(MYSQLI_REPORT_ERROR | MYSQLI_REPORT_STRICT);
$link = mysqli_connect($host, $user, $pass, $db_name);
$link->set_charset("utf8mb4");

4. SQL
The query we need looks like this:
SELECT * FROM `product` WHERE id=1
5. Executing the query in PHP
But of course, instead of 1, you need to substitute the value of the variable.
This is the hardest part. But you need to learn it once and then apply it everywhere
. It is important that the data in the database always gets separately from the request itself. This is an immutable rule that must always be observed.
For this you need

1. Replace all variables in the request with special markers called placeholders or parameters, but in fact - just question marks
   
2. Prepare the request for execution using the prepare() function. This function accepts a query string and returns an instance of the special class stmt, with which all further manipulations are performed
   
3. Bind variables to the request.
   
4. Execute the previously prepared query with execute()
   
5. Get the query result via get_result()
   
6. and then a specific row from the database using the already familiar fetch_assoc
   

In code it will be like this

$sql = "SELECT * FROM `product` WHERE id=?";
$stmt = $link->prepare($sql);
$stmt->bind_param("s", $id);
$stmt->execute();
$result = $stmt->get_result();
$row = $result->fetch_assoc();

bind_param() takes as parameters all the variables that should be included in the request, in the same order as the placeholders in the request. But in addition, the types for all variables must first be specified in this function, as a string, where the type of the variable is denoted by a single letter. That is, there should be exactly as many letters in this line as there will be variables further. Luckily, you don't have to worry too much about types and specify the type "s" for all variables.
6. Data output.
It is important to understand that at the time of data output, there should no longer be any work with the database!
There should only be PHP variables with data already acquired.

$id = intval($_GET['id']);
SELECT * FROM `product` WHERE `id` = $id

#dell.