From 33e657d3e614c4765e03a667655e1a0403c1b691 Mon Sep 17 00:00:00 2001
From: Alan Garcia <a.garcia@nnx.com>
Date: Fri, 18 Oct 2013 07:34:46 +0000
Subject: [PATCH] Fix #1539

---
 bureau/class/m_admin.php | 1 +
 1 file changed, 1 insertion(+)

diff --git a/bureau/class/m_admin.php b/bureau/class/m_admin.php
index eb87a929..cdc54be0 100644
--- a/bureau/class/m_admin.php
+++ b/bureau/class/m_admin.php
@@ -528,6 +528,7 @@ class m_admin {
     }
     $pass=_md5cr($pass);
     $db=new DB_System();
+    $notes = mysql_real_escape_string($notes);
     // Already exist?
     $db->query("SELECT count(*) AS cnt FROM membres WHERE login='$login';");
     $db->next_record();