diff --git a/include/staff/templates/thread-entry-edit.tmpl.php b/include/staff/templates/thread-entry-edit.tmpl.php
index 60dfe5523b5541736cb48139feac373cbb3607c9..e1ed1f81c9e062f8c0a45bc4a1bc6c925759681f 100644
--- a/include/staff/templates/thread-entry-edit.tmpl.php
+++ b/include/staff/templates/thread-entry-edit.tmpl.php
@@ -27,7 +27,7 @@
     data-dept-id="<?php echo $dept->getId(); ?>"
     data-poster-id="<?php echo $this->entry->staff_id; ?>"
     data-signature-field="signature"
-    data-signature="<?php echo Format::viewableImages($signature); ?>"
+    data-signature="<?php echo Format::htmlchars(Format::viewableImages($signature)); ?>"
 <?php } ?>
     name="body"
     class="large <?php