diff --git a/server/lib/classes/modules.inc.php b/server/lib/classes/modules.inc.php
index f4bb65ce373973342f027371fc65cfc5dd9448e6..8df5b64cb6eb09b25f921d1a954ffae861d32c5d 100644
--- a/server/lib/classes/modules.inc.php
+++ b/server/lib/classes/modules.inc.php
@@ -111,7 +111,7 @@ class modules {
 						$tmp_sql2 = '';
 						foreach($data['new'] as $fieldname => $val) {
 							$tmp_sql1 .= "`$fieldname`,";
-							$tmp_sql2 .= "'$val',";
+							$tmp_sql2 .= "'".$app->db->quote($val)."',";
 						}
 						$tmp_sql1 = substr($tmp_sql1,0,-1);
 						$tmp_sql2 = substr($tmp_sql2,0,-1);