Don't mean to be rude shouldn't you sqlesc the id so less chance of sql injection? or am I just
PHP Code:
mysql_query("UPDATE users SET seedbonus = seedbonus+0.125 WHERE id = $arr[userid]") or sqlerr(__FILE__, __LINE__);
[PHP]
mysql_query("UPDATE users SET seedbonus = seedbonus+0.125 WHERE id = '.sqlesc($arr[userid]).'") or sqlerr(__FILE__, __LINE__);
[PHP]
not tested just quick idea