MUST sanitize DB input soon. Currently only strips slashes and quotation marks.

Needs to be stripped for the obvious reason of avoiding SQL Injection. Should also perform more checks regarding validity of user input.
