On mod.tag.php
find
$tags = explode( "|", $this->tag );
replace with
$this->tag = $DB->escape_str( $this->tag );
$tags = explode( "|", $this->tag );
This closes up a possible security hole and error’s in case people submit a tag with an apostrophe in it.
this is below
/** ----------------------------------------
/** Count tag
/** ----------------------------------------*/
function _count_tag ( $page = 1 )
