diff --git a/app/views/news/show.rhtml b/app/views/news/show.rhtml
index 28db44e96..ea630779c 100644
--- a/app/views/news/show.rhtml
+++ b/app/views/news/show.rhtml
@@ -63,7 +63,7 @@
 <% end %>
 <% end %>
 
-<% html_title @news.title -%>
+<% html_title h(@news.title) -%>
 
 <% content_for :header_tags do %>
   <%= stylesheet_link_tag 'scm' %>