diff --git a/index.js b/index.js
index 9b44799..bdaa463 100644
--- a/index.js
+++ b/index.js
@@ -421,7 +421,7 @@ app.post('/api/v1/user/directory', (req, res) => { // Create a new directory ent
 	}
 
 	// Remove html
-	name = name.replace(/<[^>]*>?/gm, '');
+	name = require("escape-html")(name);
 	const route = req.session.userData.id;
 	// If number already exists, update, otherwise insert
 	db.get('SELECT * FROM directory WHERE number = ? AND route = ?', [number, route], (err, row) => {
diff --git a/package-lock.json b/package-lock.json
index 4161559..1a77e34 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -12,6 +12,7 @@
         "bcrypt": "^5.1.1",
         "dotenv": "^16.4.7",
         "ejs": "^3.1.10",
+        "escape-html": "^1.0.3",
         "express": "^4.21.2",
         "express-session": "^1.18.1",
         "session-file-store": "^1.5.0",
diff --git a/package.json b/package.json
index 6a1ba1c..f22660e 100644
--- a/package.json
+++ b/package.json
@@ -13,6 +13,7 @@
     "bcrypt": "^5.1.1",
     "dotenv": "^16.4.7",
     "ejs": "^3.1.10",
+    "escape-html": "^1.0.3",
     "express": "^4.21.2",
     "express-session": "^1.18.1",
     "session-file-store": "^1.5.0",