diff --git a/extend/base/Page.php b/extend/base/Page.php
index ec0990177..9d22607cc 100755
--- a/extend/base/Page.php
+++ b/extend/base/Page.php
@@ -75,8 +75,13 @@ class Page
 			{
 				if(!in_array($k, $this->not_fields) && !is_array($v))
 				{
-					if($k == 'page') continue;
-					
+					if($k == 'page')
+					{
+						continue;
+					}
+					$k = htmlspecialchars($k);
+					$v = htmlspecialchars($v);
+
 					if($tmp)
 					{
 						$this->url .= ($state === false) ? '?' : '&';