diff --git a/admin/configure.php b/admin/configure.php
index 44adfdf3348..3c3ac45f8f7 100644
--- a/admin/configure.php
+++ b/admin/configure.php
@@ -34,7 +34,7 @@
                            get_string("adminhelpmanagemodules"));
     $table->data[] = array("<b><a href=\"blocks.php\">".get_string("manageblocks")."</a></b>",
                            get_string("adminhelpmanageblocks"));
-    $table->data[] = array("<b><a href=\"filters.php\">".get_string("managefilters")."</a></b>",
+    $table->data[] = array("<b><a href=\"filters.php?sesskey=$USER->sesskey\">".get_string("managefilters")."</a></b>",
                            get_string("adminhelpmanagefilters"));
     if (!isset($CFG->disablescheduledbackups)) {
         $table->data[] = array("<b><a href=\"backup.php?sesskey=$USER->sesskey\">".get_string("backup")."</a></b>",
diff --git a/admin/filters.html b/admin/filters.html
index 79f0c55f10d..fb84bc93b16 100644
--- a/admin/filters.html
+++ b/admin/filters.html
@@ -1,6 +1,7 @@
 <?php print_simple_box_start("center", "", "$THEME->cellheading"); ?>
 
 <form name="filters" id="filters" method="post" action="filters.php">
+<input type="hidden" name="sesskey" value="<?php echo $USER->sesskey ?>">
   <table align="center" border="0" cellpadding="5" cellspacing="0">
     <tr>
       <td valign="top"><div align="right">
@@ -80,6 +81,7 @@
 <?php print_simple_box_start("center", "", "$THEME->cellheading"); ?>
 
 <form name="options" id="options" method="post" action="filters.php">
+<input type="hidden" name="sesskey" value="<?php echo $USER->sesskey ?>">
 <input type="hidden" name="options" value="1">
 <table cellpadding="20">
 <tr valign="top">
diff --git a/admin/filters.php b/admin/filters.php
index 7c9da07d772..62a159177ef 100644
--- a/admin/filters.php
+++ b/admin/filters.php
@@ -16,6 +16,10 @@
         error("Only administrators can use this page!");
     }
 
+    if (!confirm_sesskey()) {
+        error(get_string('confirmsesskeybad', 'error'));
+    }
+
     if (!$site = get_site()) {
         error("Site isn't defined!");
     }
diff --git a/admin/index.php b/admin/index.php
index 8577db4da57..6429a9cc452 100644
--- a/admin/index.php
+++ b/admin/index.php
@@ -297,7 +297,7 @@
                     get_string("adminhelpmanagemodules")."</font><br />";
     $configdata .= "<font size=+1>&nbsp;</font><a href=\"blocks.php\">".get_string("manageblocks")."</a> - <font size=\"1\">".
                     get_string("adminhelpmanageblocks")."</font><br />";
-    $configdata .= "<font size=+1>&nbsp;</font><a href=\"filters.php\">".get_string("managefilters")."</a> - <font size=\"1\">".
+    $configdata .= "<font size=+1>&nbsp;</font><a href=\"filters.php?sesskey=$USER->sesskey\">".get_string("managefilters")."</a> - <font size=\"1\">".
                     get_string("adminhelpmanagefilters")."</font><br />";
     if (!isset($CFG->disablescheduledbackups)) {
         $configdata .= "<font size=+1>&nbsp;</font><a href=\"backup.php?sesskey=$USER->sesskey\">".get_string("backup")."</a> - <font size=\"1\">".