diff --git a/admin/batch_manager.php b/admin/batch_manager.php
index e81c59f0a..8d8508703 100644
--- a/admin/batch_manager.php
+++ b/admin/batch_manager.php
@@ -566,6 +566,7 @@ $manager_link = get_root_url().'admin.php?page=batch_manager&mode=';
 
 if (isset($_GET['mode']))
 {
+  check_input_parameter('mode', $_GET, false, '/^(global|unit)$/');
   $page['tab'] = $_GET['mode'];
 }
 else