Not sure if $taboo was getting sanitized or not. Possibly an SQL injection vulnerability that allows maliciously crafted group names to inject SQL at a later date when the group CP is loaded. Unconfirmed, theoretical fix.
The images in this folder are from the Tango Desktop Project at
http://tango.freedesktop.org. The SVG files and the rendered PNGs are available
under the Creative Commons Attribution-ShareAlike license, which can be viewed
in the /licenses directory in the Enano package.