diff --git a/Modules/TestQuestionPool/classes/class.assClozeTest.php b/Modules/TestQuestionPool/classes/class.assClozeTest.php index 67e3a1093015..a9a89e7c2d21 100755 --- a/Modules/TestQuestionPool/classes/class.assClozeTest.php +++ b/Modules/TestQuestionPool/classes/class.assClozeTest.php @@ -1330,6 +1330,7 @@ public function fetchSolutionSubmit($submit) } elseif ($gap->getType() == CLOZE_NUMERIC) { $value = str_replace(",", ".", $value); } + $value = htmlentities($value); $solutionSubmit[trim($matches[1])] = $value; } }