Du blandar dina citattecken...
"SELECT `name` FROM `article` WHERE `id` = '.$id.'";
borde vara...
"SELECT `name` FROM `article` WHERE `id` = $id";
eller
'SELECT `name` FROM `article` WHERE `id` = '.$id;
detta gör ingenting för att stoppa sql-injektion...