$value) { $_POST[$key] = $database->escape($value); } $uid = (int) $_POST['uid']; $session = (int) $_POST['admid']; $sql = mysqli_query($GLOBALS["link"], "SELECT * FROM ".TB_PREFIX."users WHERE id = ".$session.""); $access = mysqli_fetch_array($sql); $sessionaccess = $access['access']; if($sessionaccess != 9) die("

Access Denied: You are not Admin!

"); mysqli_query($GLOBALS["link"], "UPDATE ".TB_PREFIX."users SET username = '".$_POST['username']."' WHERE id = ".$uid.""); header("Location: ../../../Admin/admin.php?p=player&uid=".$uid.""); ?>