changeset 449 | b8fd21190ae1 |
parent 447 | a9a3789ce02d |
child 458 | c433348f3628 |
--- a/plugins/SpecialGroups.php Wed Jan 23 19:36:16 2008 -0500 +++ b/plugins/SpecialGroups.php Wed Jan 23 19:36:42 2008 -0500 @@ -502,7 +502,8 @@ echo '<select name="group_id">'; foreach ( $session->groups as $id => $group ) { - $taboo[] = $group; + $taboo[] = $db->escape($group); + $group = htmlspecialchars($group); if ( $group != 'Everyone' ) { echo '<option value="' . $id . '">' . $group . '</option>';