Not sure if $taboo was getting sanitized or not. Possibly an SQL injection vulnerability that allows maliciously crafted group names to inject SQL at a later date when the group CP is loaded. Unconfirmed, theoretical fix.
</div>
</td>
<td id="main-right"></td>
</tr>
<tr>
<td id="foot-left"></td>
<td id="foot-main">
{COPYRIGHT}
</td>
<td id="foot-right"></td>
</tr>
<tr>
<td id="foot-btm-left"></td>
<td id="foot-btm"></td>
<td id="foot-btm-right"></td>
</tr>
</table>
</td>
<td style="width: 10%;"></td>
</tr>
</table>
</body>
</html>