diff --git a/index.php b/index.php
index eb7a653..1a58d9b 100644
--- a/index.php
+++ b/index.php
@@ -27,9 +27,9 @@
 	//while($res = mysql_fetch_array($result)) { // mysql_fetch_array is deprecated, we need to use mysqli_fetch_array 
 	while($res = mysqli_fetch_array($result)) { 		
 		echo "<tr>";
-		echo "<td>".$res['name']."</td>";
-		echo "<td>".$res['age']."</td>";
-		echo "<td>".$res['email']."</td>";	
+		echo "<td>".htmlspecialchars($res['name'], ENT_QUOTES)."</td>";
+		echo "<td>".htmlspecialchars($res['age'], ENT_QUOTES)."</td>";
+		echo "<td>".htmlspecialchars($res['email'], ENT_QUOTES)."</td>";	
 		echo "<td><a href=\"edit.php?id=$res[id]\">Edit</a> | <a href=\"delete.php?id=$res[id]\" onClick=\"return confirm('Are you sure you want to delete?')\">Delete</a></td>";		
 	}
 	?>
