@ -61,7 +61,8 @@ function ban($mask, $reason, $length, $board) {
$query->bindValue(':mod', $mod['id']);
$query->bindValue(':time', time());
if ($reason !== '') {
markup($reason);
$reason = escape_markup_modifiers($reason);
$reason = markup($reason);
$query->bindValue(':reason', $reason);
} else
$query->bindValue(':reason', null, PDO::PARAM_NULL);