<?php
session_start();
@include('../config/db_conf.php');
$conn = mysqli_connect($host, $dbuser, $dbpass, $authdb);
$points = $_POST['points'];
$sql = "UPDATE account SET vp = vp+$points WHERE username = '" . $_SESSION['username'] . "'";
if ($conn->query($sql) === TRUE) {
header('location: ../?p=vote');
} else {
echo "Error updating record: " . $conn->error;
}