There are some situations where using a dynamic include is the only feasible route. When it comes to anything using user inputted data (get, post, etc) always ALWAYS remember to verify your data first though, otherwise you almost certainly will run into a problem, if not simply open yourself to an attack.
-m