diff --git a/src/system/CategoriesModule/Controller/CategoryController.php b/src/system/CategoriesModule/Controller/CategoryController.php
index 281d95565e..4f72e2f800 100644
--- a/src/system/CategoriesModule/Controller/CategoryController.php
+++ b/src/system/CategoriesModule/Controller/CategoryController.php
@@ -98,7 +98,7 @@ private function getNodeOptions(Request $request): array
                 }
                 $class = !empty($classes) ? ' class="' . implode(' ', $classes) . '"' : '';
 
-                return '<a' . $class . $title . ' href="#">' . $displayName . '</a>';
+                return '<a' . $class . $title . ' href="#">' . htmlspecialchars($displayName) . '</a>';
             }
         ];
     }
@@ -115,6 +115,6 @@ private function createTitleAttribute(array $node, string $displayName, string $
         $title[] = $this->trans('Leaf') . ': ' . ($node['leaf'] ? 'Yes' : 'No');
         $title[] = $this->trans('Locked') . ': ' . ($node['locked'] ? 'Yes' : 'No');
 
-        return implode('<br />', $title);
+        return htmlspecialchars(implode('<br />', $title));
     }
 }