diff --git a/src/plugins/bookPlayer/tableOfContents.js b/src/plugins/bookPlayer/tableOfContents.js
index 15c19e89d0..4c2012d0ec 100644
--- a/src/plugins/bookPlayer/tableOfContents.js
+++ b/src/plugins/bookPlayer/tableOfContents.js
@@ -1,3 +1,4 @@
+import escapeHTML from 'escape-html';
import dialogHelper from '../../components/dialogHelper/dialogHelper';
export default class TableOfContents {
@@ -56,7 +57,7 @@ export default class TableOfContents {
// remove parent directory reference from href to fix certain books
const link = chapter.href.startsWith('../') ? chapter.href.slice(3) : chapter.href;
- itemHtml += `${chapter.label}`;
+ itemHtml += `${escapeHTML(chapter.label)}`;
if (chapter.subitems?.length) {
const subHtml = chapter.subitems