Cool, that takes care of malicious input.. I've read there's also issues of a users session being hijacked and you should re-issue a session ID after login.. is this the case?? Any other security issues I should be aware off??

Thanks,

Nathan.