diff --git a/src/utils/xss.js b/src/utils/xss.js
index d7a07dd36..28e2c1ea7 100644
--- a/src/utils/xss.js
+++ b/src/utils/xss.js
@@ -18,6 +18,7 @@ const options = {
     if (['src', 'href'].indexOf(name) !== -1) {
       return name + '=' + value.replace('javascript:', 'java:').replace('data:', 'dt:')
     }
+    return name + '="' + xss.escapeAttrValue(value) + '"'
   }
 }
 const filter = new xss.FilterXSS(options)