diff --git a/plugins/flexprofile_mj/views/default/profile/userdetails.php b/plugins/flexprofile_mj/views/default/profile/userdetails.php
index f840b848457a2df36ee1603ff0d713e73ac4f769..69d5854edcb04d84c8d7b1966d1f161db91db57d 100755
--- a/plugins/flexprofile_mj/views/default/profile/userdetails.php
+++ b/plugins/flexprofile_mj/views/default/profile/userdetails.php
@@ -111,12 +111,12 @@ END;
 		$rel = 'friend';
 		
 	// display the users name
-	$body .= "<h2><a href=\"" . $vars['entity']->getUrl() . "\" rel=\"$rel\">" . $vars['entity']->name . "</a></h2>";
+	$body .= "<h2><a href=\"" . $vars['entity']->getUrl() . "\" rel=\"$rel\">" . htmlentities($vars['entity']->name) . "</a></h2>";
 
 	//insert a view that can be extended
 	$body .= elgg_view("profile/status", array("entity" => $vars['entity']));
 	// display the users name
-	//$body .= "<h2><a href=\"" . $vars['entity']->getUrl() . "\">" . $vars['entity']->name . "</a></h2>";
+	//$body .= "<h2><a href=\"" . $vars['entity']->getUrl() . "\">" . htmlentities($vars['entity']->name) . "</a></h2>";
 
 	if ($vars['full'] == true) {
 		if ($form) {