Index: openacs-4/packages/acs-subsite/www/register/user-new.tcl
===================================================================
RCS file: /usr/local/cvsroot/openacs-4/packages/acs-subsite/www/register/user-new.tcl,v
diff -u -r1.22.12.1 -r1.22.12.2
--- openacs-4/packages/acs-subsite/www/register/user-new.tcl	10 Sep 2015 08:21:52 -0000	1.22.12.1
+++ openacs-4/packages/acs-subsite/www/register/user-new.tcl	18 May 2016 08:11:49 -0000	1.22.12.2
@@ -5,6 +5,12 @@
 } {
     {email ""}
     {return_url [ad_pvt_home]}
+} -validate {
+    valid_return_url {
+        if {[string first {$} $return_url] > -1} {
+            ad_complain "return_url contains invalid character"
+        }
+    }
 }
 
 set registration_url [parameter::get -parameter RegistrationRedirectUrl]