diff --git a/fragebogen.php b/fragebogen.php
index 9e0cf4b..ea1e640 100755
--- a/fragebogen.php
+++ b/fragebogen.php
@@ -178,7 +178,7 @@ function fetch_select(){
 				 Private Emailadresse </td>
 				<td width='82%' colspan='3' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				  <input type='text' name='mail' value='$row[mail2]' size='80'>
+				  <input type='text' name='mail' value=\"$row[mail2]\" size='80'>
 				</td>
 			</tr>
 			<tr>
@@ -187,7 +187,7 @@ function fetch_select(){
 				  </td>
 				<td width='82%' colspan='3' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				  <input type='checkbox' name='eiver_rueckfr' value='Y'"; if($row_einver['einverst'] == 'Y'){ echo " checked "; } echo">
+				  <input type='checkbox' name='eiver_rueckfr' value=\"Y\""; if($row_einver['einverst'] == 'Y'){ echo " checked "; } echo">
 				   Ich bin damit einverstanden, dass meine <u>Emailadresse</u> f&uuml;r eventuelle Nachfragen ver&ouml;ffentlicht wird. 
 				</td>
 			</tr>
@@ -227,7 +227,7 @@ function fetch_select(){
 			                <option value=''>Select</option>";
 			                #echo "<option value='%'";if($row3[kontinent] == '%'){echo " selected";} echo">Alle&nbsp;&nbsp;&nbsp;</option>\n";
                                   while ($row2 = $result2->fetch_array()){
-                                    echo "<option value='$row2[kid]'";if($row2['kid'] == $row3['kontinent']){echo " selected";} echo">".$row2['kontinent']."&nbsp;&nbsp;&nbsp;</option>\n";
+                                    echo "<option value=\"$row2[kid]\"";if($row2['kid'] == $row3['kontinent']){echo " selected";} echo">".$row2['kontinent']."&nbsp;&nbsp;&nbsp;</option>\n";
                                   }
                                   echo"
                                   
@@ -250,7 +250,7 @@ function fetch_select(){
 				  Stadt  </td>
 				<td width='82%' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='stadt' value='$row3[stadt]' size='90'></p>
+				<input type='text' name='stadt' value=\"$row3[stadt]\" size='90'></p>
 				</td>
 			</tr>
 			<tr>
@@ -259,7 +259,7 @@ function fetch_select(){
 				  Stelle  </td>
 				<td width='82%' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='stelle' value='$row3[stelle]' size='90'></p>
+				<input type='text' name='stelle' value=\"$row3[stelle]\" size='90'></p>
 				</td>
 			</tr>
 			<tr>
@@ -269,7 +269,7 @@ function fetch_select(){
 				</td>
 				<td width='82%' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='kontaktadresse' value='$row3[adresse]' size='90'></p>
+				<input type='text' name='kontaktadresse' value=\"$row3[adresse]\" size='90'></p>
 				</td>
 			</tr>
 			<tr>
@@ -278,7 +278,7 @@ function fetch_select(){
 				  Ansprechpartner  </td>
 				<td width='82%' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='ansprechpart' value='$row3[ansprechpartner]' size='90'></p>
+				<input type='text' name='ansprechpart' value=\"$row3[ansprechpartner]\" size='90'></p>
 				</td>
 			</tr>
 			<tr>
@@ -288,7 +288,7 @@ function fetch_select(){
 				 </td>
 				<td width='82%' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='abteilung' value='$row3[abteilung]' size='90'></p>
+				<input type='text' name='abteilung' value=\"$row3[abteilung]\" size='90'></p>
 				</td>
 			</tr>
 			<tr>
@@ -340,7 +340,7 @@ function fetch_select(){
 				<td width='82%' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
 				<br>
-				<input type='text' name='von_tag' value='$row[von_tag]' size='2'>.<input type='text' name='von_monat' value='$row[von_mon]' size='2'>.<input type='text' name='von_jahr' value='$row[von_jahr]' size='4'>   bis  <input type='text' name='bis_tag' value='$row[bis_tag]' size='2'>.<input type='text' name='bis_monat' value='$row[bis_mon]' size='2'>.<input type='text' name='bis_jahr' value='$row[bis_jahr]' size='4'>
+				<input type='text' name='von_tag' value=\"$row[von_tag]\" size='2'>.<input type='text' name='von_monat' value=\"$row[von_mon]\" size='2'>.<input type='text' name='von_jahr' value=\"$row[von_jahr]\" size='4'>   bis  <input type='text' name='bis_tag' value=\"$row[bis_tag]\" size='2'>.<input type='text' name='bis_monat' value=\"$row[bis_mon]\" size='2'>.<input type='text' name='bis_jahr' value=\"$row[bis_jahr]\" size='4'>
 				</p>
 				</td>
 			</tr>
@@ -350,7 +350,7 @@ function fetch_select(){
 				  Genaue Bezeichnung der Abteilung  </td>
 				<td width='82%' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='abteilung_genau' value='$row[abteilung_genau]' size='90'></p>
+				<input type='text' name='abteilung_genau' value=\"$row[abteilung_genau]\" size='90'></p>
 				</td>
 			</tr>
 			<tr>
@@ -361,7 +361,7 @@ function fetch_select(){
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' colspan='2'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='platz_gefunden' value='$row[platz_gefunden]' size='118'></td>
+				<input type='text' name='platz_gefunden' value=\"$row[platz_gefunden]\" size='118'></td>
 				</tr>
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' height='27' colspan='2'>
@@ -376,7 +376,7 @@ function fetch_select(){
 				</td>
 				<td width='82%' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='visum' value='$row[visum]' size='90'></td>
+				<input type='text' name='visum' value=\"$row[visum]\" size='90'></td>
 			</tr>
 			<tr>
 				<td width='17%' style='border-left-style: solid; border-left-width: 2px'>
@@ -384,7 +384,7 @@ function fetch_select(){
 				 - Transport  </td>
 				<td width='82%' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='transport' value='$row[transport]' size='90'></td>
+				<input type='text' name='transport' value=\"$row[transport]\" size='90'></td>
 			</tr>
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' height='27' colspan='2'>
@@ -395,7 +395,7 @@ function fetch_select(){
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' colspan='2'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='vorbereitungsbeginn' value='$row[beginn_vorbereitung]' size='118'></td>
+				<input type='text' name='vorbereitungsbeginn' value=\"$row[beginn_vorbereitung]\" size='118'></td>
 				</tr>
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' height='27' colspan='2'>
@@ -407,7 +407,7 @@ function fetch_select(){
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' colspan='2'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='erasmus' value='$row[erasmus]' size='118'></td>
+				<input type='text' name='erasmus' value=\"$row[erasmus]\" size='118'></td>
 				</tr>
 			<tr>
 			<tr>
@@ -421,8 +421,8 @@ function fetch_select(){
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' colspan='2'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<!-- <input type='text' name='auslandszuschlag' value='$row[auslandskostenzuschlag]' size='118'> -->
-				<input type='text' name='trennungsgeld' value='$row[trennungsgeld]' size='118'>
+				<!-- <input type='text' name='auslandszuschlag' value=\"$row[auslandskostenzuschlag]\" size='118'> -->
+				<input type='text' name='trennungsgeld' value=\"$row[trennungsgeld]\" size='118'>
 				</td>
 				</tr>
 			<tr>
@@ -504,7 +504,7 @@ function fetch_select(){
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' colspan='2'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='ag_hilfe' value='$row[ag_hilfe]' size='118'></td>
+				<input type='text' name='ag_hilfe' value=\"$row[ag_hilfe]\" size='118'></td>
 				</tr>
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' height='27' colspan='2'>
@@ -514,7 +514,7 @@ function fetch_select(){
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' colspan='2'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='kosten' value='$row[kosten]' size='118'></td>
+				<input type='text' name='kosten' value=\"$row[kosten]\" size='118'></td>
 				</tr>
 			<tr>
 				<td width='17%' style='border-left-style: solid; border-left-width: 2px; border-bottom-style: solid; border-bottom-width: 2px'>
@@ -701,7 +701,7 @@ function fetch_select(){
 				Schwierigkeiten  </td>
 				<td width='56%' style='border-right-style: solid; border-right-width: 2px' height='25'>
 				<br>
-				<input type='text' name='schwierigkeiten' value='$row[schwierigkeiten]' size='65'></td>
+				<input type='text' name='schwierigkeiten' value=\"$row[schwierigkeiten]\" size='65'></td>
 			</tr>
 			<tr>
 				<td width='43%' style='border-left-style: solid; border-left-width: 2px; border-bottom-style: solid; border-bottom-width: 2px'>
@@ -738,7 +738,7 @@ function fetch_select(){
 				 
 				Lebensunterhaltskosten/Woche ca. </td>
 				<td width='56%' style='border-right-style: solid; border-right-width: 2px'>
-				<input type='text' name='lebenshaltungskosten' value='$row[lebenshaltungskosten]' size='65'></td>
+				<input type='text' name='lebenshaltungskosten' value=\"$row[lebenshaltungskosten]\" size='65'></td>
 			</tr>
 			<tr>
 				<td width='43%' style='border-left-style: solid; border-left-width: 2px'>
@@ -755,7 +755,7 @@ function fetch_select(){
 				 Konntest du
 				Kontakte kn&uuml;pfen? </td>
 				<td width='56%' style='border-right-style: solid; border-right-width: 2px'>
-				<input type='text' name='kontakte' value='$row[kontakte]' size='65'></td>
+				<input type='text' name='kontakte' value=\"$row[kontakte]\" size='65'></td>
 			</tr>
 			<tr>
 				<td width='43%' style='border-left-style: solid; border-left-width: 2px'>
@@ -763,7 +763,7 @@ function fetch_select(){
 				 War dies
 				eher leicht/schwer? </td>
 				<td width='56%' style='border-right-style: solid; border-right-width: 2px'>
-				<input type='text' name='schwierigkeit_kontakte' value='$row[schwierigkeit_kontakte]' size='65'></td>
+				<input type='text' name='schwierigkeit_kontakte' value=\"$row[schwierigkeit_kontakte]\" size='65'></td>
 			</tr>
 			<tr>
 				<td width='43%' style='border-left-style: solid; border-left-width: 2px; border-bottom-style: solid; border-bottom-width: 2px'>
@@ -860,14 +860,13 @@ if(!$sql){
 }
 
 ## Bewerbung ##
-$kontinent=$_POST['kontinent'];
-$land=$_POST['land'];
-$stadt=$_POST['stadt'];
-$stelle=$_POST['stelle'];
-$adresse=$_POST['kontaktadresse'];
-$ansprechpart=$_POST['ansprechpart'];
-$abteilung=$_POST['abteilung'];
-
+$kontinent=addslashes($_POST['kontinent']);
+$land=addslashes($_POST['land']);
+$stadt=addslashes($_POST['stadt']);
+$stelle=addslashes($_POST['stelle']);
+$adresse=addslashes($_POST['kontaktadresse']);
+$ansprechpart=addslashes($_POST['ansprechpart']);
+$abteilung=addslashes($_POST['abteilung']);
 
 
 $sql = $db->query ("DELETE FROM aesp_bewerbung WHERE uid = '$uid1'");
diff --git a/neuanlage.php b/neuanlage.php
index 185740d..9de9d4c 100755
--- a/neuanlage.php
+++ b/neuanlage.php
@@ -333,7 +333,7 @@ function fetch_select(){
 				 Private Emailadresse </td>
 				<td width='82%' colspan='3' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				  <input type='text' name='mail' value='$row[mail2]' size='80'>
+				  <input type='text' name='mail' value=\"$row[mail2]\" size='80'>
 				</td>
 			</tr>
 			<tr>
@@ -342,7 +342,7 @@ function fetch_select(){
 				  </td>
 				<td width='82%' colspan='3' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				  <input type='checkbox' name='eiver_rueckfr' value='Y'"; if($row_einver['einverst'] == 'Y'){ echo " checked "; } echo">
+				  <input type='checkbox' name='eiver_rueckfr' value=\"Y\""; if($row_einver['einverst'] == 'Y'){ echo " checked "; } echo">
 				   Ich bin damit einverstanden, dass meine <u>Emailadresse</u> für eventuelle Nachfragen veröffentlicht wird. 
 				</td>
 			</tr>
@@ -382,7 +382,7 @@ function fetch_select(){
 			                <option value=''>Select</option>";
 			                #echo "<option value='%'";if($row3[kontinent] == '%'){echo " selected";} echo">Alle&nbsp;&nbsp;&nbsp;</option>\n";
                                   while ($row2 = $result2->fetch_array()){
-                                    echo "<option value='$row2[kid]'";if($row2['kid'] == $row3['kontinent']){echo " selected";} echo">".$row2['kontinent']."&nbsp;&nbsp;&nbsp;</option>\n";
+                                    echo "<option value=\"$row2[kid]\"";if($row2['kid'] == $row3['kontinent']){echo " selected";} echo">".$row2['kontinent']."&nbsp;&nbsp;&nbsp;</option>\n";
                                   }
                                   echo"
                                   
@@ -404,7 +404,7 @@ function fetch_select(){
 				  Stadt  </td>
 				<td width='82%' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='stadt' value='$row3[stadt]' size='90'></p>
+				<input type='text' name='stadt' value=\"$row3[stadt]\" size='90'></p>
 				</td>
 			</tr>
 			<tr>
@@ -414,7 +414,7 @@ function fetch_select(){
 				</td>
 				<td width='82%' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='kontaktadresse' value='$row3[adresse]' size='90'></p>
+				<input type='text' name='kontaktadresse' value=\"$row3[adresse]\" size='90'></p>
 				</td>
 			</tr>
 			<tr>
@@ -423,7 +423,7 @@ function fetch_select(){
 				  Ansprechpartner  </td>
 				<td width='82%' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='ansprechpart' value='$row3[ansprechpartner]' size='90'></p>
+				<input type='text' name='ansprechpart' value=\"$row3[ansprechpartner]\" size='90'></p>
 				</td>
 			</tr>
 			<tr>
@@ -433,7 +433,7 @@ function fetch_select(){
 				 </td>
 				<td width='82%' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='abteilung' value='$row3[abteilung]' size='90'></p>
+				<input type='text' name='abteilung' value=\"$row3[abteilung]\" size='90'></p>
 				</td>
 			</tr>
 			<tr>
@@ -485,7 +485,7 @@ function fetch_select(){
 				<td width='82%' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
 				<br>
-				<input type='text' name='von_tag' value='$row[von_tag]' size='2'>.<input type='text' name='von_monat' value='$row[von_mon]' size='2'>.<input type='text' name='von_jahr' value='$row[von_jahr]' size='4'>   bis  <input type='text' name='bis_tag' value='$row[bis_tag]' size='2'>.<input type='text' name='bis_monat' value='$row[bis_mon]' size='2'>.<input type='text' name='bis_jahr' value='$row[bis_jahr]' size='4'>
+				<input type='text' name='von_tag' value=\"$row[von_tag]\" size='2'>.<input type='text' name='von_monat' value=\"$row[von_mon]\" size='2'>.<input type='text' name='von_jahr' value=\"$row[von_jahr]\" size='4'>   bis  <input type='text' name='bis_tag' value=\"$row[bis_tag]\" size='2'>.<input type='text' name='bis_monat' value=\"$row[bis_mon]\" size='2'>.<input type='text' name='bis_jahr' value=\"$row[bis_jahr]\" size='4'>
 				</p>
 				</td>
 			</tr>
@@ -495,7 +495,7 @@ function fetch_select(){
 				  Genaue Bezeichnung der Abteilung  </td>
 				<td width='82%' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='abteilung_genau' value='$row[abteilung_genau]' size='90'></p>
+				<input type='text' name='abteilung_genau' value=\"$row[abteilung_genau]\" size='90'></p>
 				</td>
 			</tr>
 			<tr>
@@ -506,7 +506,7 @@ function fetch_select(){
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' colspan='2'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='platz_gefunden' value='$row[platz_gefunden]' size='118'></td>
+				<input type='text' name='platz_gefunden' value=\"$row[platz_gefunden]\" size='118'></td>
 				</tr>
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' height='27' colspan='2'>
@@ -520,7 +520,7 @@ function fetch_select(){
 				  - Visum   . </td>
 				<td width='82%' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='visum' value='$row[visum]' size='90'></td>
+				<input type='text' name='visum' value=\"$row[visum]\" size='90'></td>
 			</tr>
 			<tr>
 				<td width='17%' style='border-left-style: solid; border-left-width: 2px'>
@@ -528,7 +528,7 @@ function fetch_select(){
 				 - Transport  </td>
 				<td width='82%' style='border-right-style: solid; border-right-width: 2px'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='transport' value='$row[transport]' size='90'></td>
+				<input type='text' name='transport' value=\"$row[transport]\" size='90'></td>
 			</tr>
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' height='27' colspan='2'>
@@ -539,7 +539,7 @@ function fetch_select(){
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' colspan='2'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='vorbereitungsbeginn' value='$row[beginn_vorbereitung]' size='118'></td>
+				<input type='text' name='vorbereitungsbeginn' value=\"$row[beginn_vorbereitung]\" size='118'></td>
 				</tr>
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' height='27' colspan='2'>
@@ -551,7 +551,7 @@ function fetch_select(){
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' colspan='2'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='erasmus' value='$row[erasmus]' size='118'></td>
+				<input type='text' name='erasmus' value=\"$row[erasmus]\" size='118'></td>
 				</tr>
 			<tr>
 			<tr>
@@ -565,8 +565,8 @@ function fetch_select(){
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' colspan='2'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<!-- <input type='text' name='auslandszuschlag' value='$row[auslandskostenzuschlag]' size='118'> -->
-				<input type='text' name='trennungsgeld' value='$row[trennungsgeld]' size='118'>
+				<!-- <input type='text' name='auslandszuschlag' value=\"$row[auslandskostenzuschlag]\" size='118'> -->
+				<input type='text' name='trennungsgeld' value=\"$row[trennungsgeld]\" size='118'>
 				</td>
 				</tr>
 			<tr>
@@ -647,7 +647,7 @@ function fetch_select(){
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' colspan='2'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='ag_hilfe' value='$row[ag_hilfe]' size='118'></td>
+				<input type='text' name='ag_hilfe' value=\"$row[ag_hilfe]\" size='118'></td>
 				</tr>
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' height='27' colspan='2'>
@@ -657,7 +657,7 @@ function fetch_select(){
 			<tr>
 				<td width='99%' style='border-left-style: solid; border-left-width: 2px; border-right-style:solid; border-right-width:2px' colspan='2'>
 				<p style='margin-left: 3px; margin-right: 3px'>
-				<input type='text' name='kosten' value='$row[kosten]' size='118'></td>
+				<input type='text' name='kosten' value=\"$row[kosten]\" size='118'></td>
 				</tr>
 			<tr>
 				<td width='17%' style='border-left-style: solid; border-left-width: 2px; border-bottom-style: solid; border-bottom-width: 2px'>
@@ -844,7 +844,7 @@ function fetch_select(){
 				Schwierigkeiten  </td>
 				<td width='56%' style='border-right-style: solid; border-right-width: 2px' height='25'>
 				<br>
-				<input type='text' name='schwierigkeiten' value='$row[schwierigkeiten]' size='65'></td>
+				<input type='text' name='schwierigkeiten' value=\"$row[schwierigkeiten]\" size='65'></td>
 			</tr>
 			<tr>
 				<td width='43%' style='border-left-style: solid; border-left-width: 2px; border-bottom-style: solid; border-bottom-width: 2px'>
@@ -881,7 +881,7 @@ function fetch_select(){
 				 
 				Lebensunterhaltskosten/Woche ca. </td>
 				<td width='56%' style='border-right-style: solid; border-right-width: 2px'>
-				<input type='text' name='lebenshaltungskosten' value='$row[lebenshaltungskosten]' size='65'></td>
+				<input type='text' name='lebenshaltungskosten' value=\"$row[lebenshaltungskosten]\" size='65'></td>
 			</tr>
 			<tr>
 				<td width='43%' style='border-left-style: solid; border-left-width: 2px'>
@@ -898,7 +898,7 @@ function fetch_select(){
 				 Konntest du
 				Kontakte knüpfen? </td>
 				<td width='56%' style='border-right-style: solid; border-right-width: 2px'>
-				<input type='text' name='kontakte' value='$row[kontakte]' size='65'></td>
+				<input type='text' name='kontakte' value=\"$row[kontakte]\" size='65'></td>
 			</tr>
 			<tr>
 				<td width='43%' style='border-left-style: solid; border-left-width: 2px'>
@@ -906,7 +906,7 @@ function fetch_select(){
 				 War dies
 				eher leicht/schwer? </td>
 				<td width='56%' style='border-right-style: solid; border-right-width: 2px'>
-				<input type='text' name='schwierigkeit_kontakte' value='$row[schwierigkeit_kontakte]' size='65'></td>
+				<input type='text' name='schwierigkeit_kontakte' value=\"$row[schwierigkeit_kontakte]\" size='65'></td>
 			</tr>
 			<tr>
 				<td width='43%' style='border-left-style: solid; border-left-width: 2px; border-bottom-style: solid; border-bottom-width: 2px'>
@@ -1006,13 +1006,14 @@ if(!$sql){
 }
 
 ## Bewerbung ##
-$kontinent=$_POST['kontinent'];
-$land=$_POST['land'];
-$stadt=$_POST['stadt'];
-$stelle=$_POST['stelle'];
-$adresse=$_POST['kontaktadresse'];
-$ansprechpart=$_POST['ansprechpart'];
-$abteilung=$_POST['abteilung'];
+$kontinent=addslashes($_POST['kontinent']);
+$land=addslashes($_POST['land']);
+$stadt=addslashes($_POST['stadt']);
+$stelle=addslashes($_POST['stelle']);
+$adresse=addslashes($_POST['kontaktadresse']);
+$ansprechpart=addslashes($_POST['ansprechpart']);
+$abteilung=addslashes($_POST['abteilung']);
+
 
 $sql = $db->query ("DELETE FROM aesp_bewerbung WHERE uid = '$uid1'");
 $sql = $db->query ("INSERT INTO aesp_bewerbung