diff --git a/sources/main.functions.php b/sources/main.functions.php
index 2e137afbb..830c14e5c 100755
--- a/sources/main.functions.php
+++ b/sources/main.functions.php
@@ -4313,11 +4313,12 @@ function sendMailToUser(
     global $SETTINGS;
     $emailSettings = new EmailSettings($SETTINGS);
     $emailService = new EmailService();
+    $antiXss = new AntiXSS();
 
     // Sanitize inputs
     $post_receipt = filter_var($post_receipt, FILTER_SANITIZE_EMAIL);
-    $post_subject = htmlspecialchars($post_subject, ENT_QUOTES, 'UTF-8');
-    $post_body = htmlspecialchars($post_body, ENT_QUOTES, 'UTF-8');
+    $post_subject = $antiXss->xss_clean($post_subject);
+    $post_body = $antiXss->xss_clean($post_body);
 
     if (count($post_replace) > 0) {
         $post_body = str_replace(