diff --git a/public/src/app.js b/public/src/app.js
index f2b6c25ba0..1a8e1a65e5 100644
--- a/public/src/app.js
+++ b/public/src/app.js
@@ -596,7 +596,7 @@ app.cacheBuster = null;
 							return;
 						}
 						data.posts.forEach(function (p) {
-							p.snippet = $(p.content).text().slice(0, 80) + '...';
+							p.snippet = utils.escapeHTML($(p.content).text().slice(0, 80) + '...');
 						});
 						app.parseAndTranslate(template, data, function (html) {
 							html.find('.timeago').timeago();