diff --git a/htdocs/accountancy/customer/lines.php b/htdocs/accountancy/customer/lines.php
index 7f09e111a23..92997b7a0e6 100644
--- a/htdocs/accountancy/customer/lines.php
+++ b/htdocs/accountancy/customer/lines.php
@@ -516,7 +516,7 @@ if ($result) {
}
print '';
- print '| '.$objp->tva_intra.' | ';
+ print ''.dol_escape_htmltag($objp->tva_intra).' | ';
print '';
print $accountingaccountstatic->getNomUrl(0, 1, 1, '', 1);
diff --git a/htdocs/accountancy/customer/list.php b/htdocs/accountancy/customer/list.php
index 56f904e79ef..ee591df5413 100644
--- a/htdocs/accountancy/customer/list.php
+++ b/htdocs/accountancy/customer/list.php
@@ -631,7 +631,7 @@ if ($result) {
print $product_static->getNomUrl(1);
}
if ($product_static->label) {
- print '
'.$product_static->label.'';
+ print '
'.dol_escape_htmltag($product_static->label).'';
}
print ' | ';
@@ -665,7 +665,7 @@ if ($result) {
print '';
// VAT Num
- print ''.dol_escape_htmltag($objp->tva_intra).' | ';
+ print ''.dol_escape_htmltag($objp->tva_intra).' | ';
// Found accounts
print '';
diff --git a/htdocs/accountancy/supplier/lines.php b/htdocs/accountancy/supplier/lines.php
index b7d0a0423f3..ff52fd77bd6 100644
--- a/htdocs/accountancy/supplier/lines.php
+++ b/htdocs/accountancy/supplier/lines.php
@@ -521,7 +521,7 @@ if ($result) {
}
print ' | ';
- print ''.$objp->tva_intra.' | ';
+ print ''.dol_escape_htmltag($objp->tva_intra).' | ';
+ print ''.dol_escape_htmltag($objp->tva_intra).' | ';
// Found accounts
print '';
|