$GLOBALS['userid'] = 0;
if (!empty($_GET['action'])) $GLOBALS['action'] = secureString($_GET['action']);
if (!empty($_GET['what'])) $GLOBALS['what'] = secureString($_GET['what']);
+if (empty($_GET['module'])) $_GET['module'] = "index";
// Secure the module name (very important line!)
$GLOBALS['module'] = htmlentities(strip_tags($_GET['module']), ENT_QUOTES);