diff --git a/core/trunk/core/class/class_security.php b/core/trunk/core/class/class_security.php
index 1dfc737acad96d7a3424e091b5eeeb9f8c4e4f45..394415649a793bc4e92b557c3aa45b98ef32d143 100644
--- a/core/trunk/core/class/class_security.php
+++ b/core/trunk/core/class/class_security.php
@@ -92,6 +92,18 @@ class security extends dbquery
         $array = array();
         $error = '';
         $uc = new users_controler();
+
+	$s_login = str_replace('\'', '', $s_login);
+	$s_login = str_replace('=', '', $s_login);
+	$s_login = str_replace('"', '', $s_login);
+	$s_login = str_replace('*', '', $s_login);
+	$s_login = str_replace(';', '', $s_login);
+	$s_login = str_replace('--', '', $s_login);
+	$s_login = str_replace(',', '', $s_login);
+	$s_login = str_replace('$', '', $s_login);
+	$s_login = str_replace('>', '', $s_login);
+	$s_login = str_replace('<', '', $s_login);
+
         // #TODO : Not usefull anymore, loginmode field is always in users table
         //Compatibility test, if loginmode column doesn't exists, Maarch can't crash
         if ($this->test_column($_SESSION['tablename']['users'], 'loginmode')) {