$value) { $_POST[$key] = $database->escape($value); } $session = (int) $_POST['admid']; $id = (int) $_POST['id']; $sql = mysqli_query($GLOBALS["link"], "SELECT * FROM ".TB_PREFIX."users WHERE id = ".$session.""); $access = mysqli_fetch_array($sql); $sessionaccess = $access['access']; if($sessionaccess != 9) die("

Access Denied: You are not Admin!

"); mysqli_query($GLOBALS["link"], "UPDATE ".TB_PREFIX."users SET email = '".$_POST['email']."', tribe = ".(int) $_POST['tribe'].", location = '".$_POST['location']."', desc1 = '".$_POST['desc1']."', desc2 = '".$_POST['desc2']."', quest = '".$_POST['quest']."' WHERE id = $id") or die(mysqli_error($database->dblink)); header("Location: ../../../Admin/admin.php?p=player&uid=".$id.""); ?>