Index: include/help.php
=================================================================== 
--- include/help.php	2010-03-12 14:10:40.000000000 +0300
+++ include/help.php	2010-03-12 14:16:51.000000000 +0300
@@ -316,8 +316,9 @@
 }
 
 $smarty->assign("userinfo", @$userinfo);
-$smarty->assign("username", stripslashes(func_unhtmlentities(@$username)));
-$smarty->assign("email", stripslashes(func_unhtmlentities(@$email)));
+$smarty->assign("username", preg_replace("/[^a-zA-Z0-9_\-\.@]+/s", "", stripslashes(func_unhtmlentities(@$username))));
+if (func_check_email(stripslashes(func_unhtmlentities(@$email))))
+	$smarty->assign("email", stripslashes(func_unhtmlentities(@$email)));
 $smarty->assign("fillerror", @$fillerror);
 if (!empty($active_modules['Image_Verification']) && !empty($antibot_contactus_err)) {
 	$smarty->assign("antibot_contactus_err", @$antibot_contactus_err);