diff --git a/src/components/subtitleuploader/subtitleuploader.js b/src/components/subtitleuploader/subtitleuploader.js
index 504342c0d..b3021f6bb 100644
--- a/src/components/subtitleuploader/subtitleuploader.js
+++ b/src/components/subtitleuploader/subtitleuploader.js
@@ -1,3 +1,5 @@
+import escapeHtml from 'escape-html';
+
import dialogHelper from '../../components/dialogHelper/dialogHelper';
import ServerConnections from '../ServerConnections';
import dom from '../../scripts/dom';
@@ -61,7 +63,7 @@ function setFiles(page, files) {
reader.onload = (function (theFile) {
return function () {
// Render file.
- const html = `${escape(theFile.name)}
`;
+ const html = `${escapeHtml(theFile.name)}
`;
page.querySelector('#subtitleOutput').innerHTML = html;
page.querySelector('#fldUpload').classList.remove('hide');