$value) { $_POST[$key] = $database->escape($value); } $id = $_POST['id']; $user = $database->getUserArray($id,1); mysqli_query($GLOBALS["link"], "UPDATE ".TB_PREFIX."users SET email = '".$_POST['email']."', tribe = ".(int) $_POST['tribe'].", location = '".$_POST['location']."', desc1 = '".$_POST['desc1']."', desc2 = '".$_POST['desc2']."' WHERE id = ".(int) $_POST['id'].""); mysqli_query($GLOBALS["link"], "Insert into ".TB_PREFIX."admin_log values (0,".(int) $_SESSION['id'].",'Changed ".$user['username']."\'s profile',".time().")"); header("Location: ../../../Admin/admin.php?p=player&uid=".$id.""); ?>