--- a/plugins/SpecialGroups.php	Wed Jan 23 19:36:16 2008 -0500
+++ b/plugins/SpecialGroups.php	Wed Jan 23 19:36:42 2008 -0500
@@ -502,7 +502,8 @@
       echo '<select name="group_id">';
       foreach ( $session->groups as $id => $group )
       {
-        $taboo[] = $group;
+        $taboo[] = $db->escape($group);
+        $group = htmlspecialchars($group);
         if ( $group != 'Everyone' )
         {
           echo '<option value="' . $id . '">' . $group . '</option>';