diff --git a/index.php b/index.php
index 4707dd63ca..e39b3ebe0c 100644
--- a/index.php
+++ b/index.php
@@ -432,7 +432,7 @@
   }
 }
 
-echo $_GET['asdf'];
+echo htmlspecialchars(isset($_GET['asdf']) ? $_GET['asdf'] : '', ENT_QUOTES, 'UTF-8');
 
 //------------------------------------------------------------ end
 include(PHPWG_ROOT_PATH.'include/page_header.php');