diff --git a/eventAdded.php b/eventAdded.php
index 3875122..a7026c6 100644
--- a/eventAdded.php
+++ b/eventAdded.php
@@ -2,11 +2,11 @@
 include_once('databaseOperations.php');
 include('datetimeOperations.php');
 $db = connect();
-$titre = $_POST['title'];
-$localisation = $_POST['address'];
+$titre = htmlentities($_POST['title']);
+$localisation = htmlentities($_POST['address']);
 $dtstart = strtotime($_POST['dtstart']);
 $dtend = strtotime($_POST['dtend']);
-$description = $_POST['description'];
+$description = htmlentities($_POST['description']);
 $url = $_POST['site'];
 $urlImage = $_POST['urlImage'];
 $contact = $_POST['contact'];