Index: functions.php
===================================================================
--- functions.php	(revision 920)
+++ functions.php	(working copy)
@@ -421,6 +421,11 @@
 }
 
 #-------------------------------------------------------------------------------
+function sanitize ( $string ) {
+  return  escapeshellcmd( clean_string( rawurldecode( $string ) ) ) ;
+}
+
+#-------------------------------------------------------------------------------
 # If arg is entirely numeric, return it.  Otherwise, return null.
 function clean_number( $digit )
 {