diff --git a/Web/Controllers/BlogController.cs b/Web/Controllers/BlogController.cs
index 14f6332..879fbcf 100644
--- a/Web/Controllers/BlogController.cs
+++ b/Web/Controllers/BlogController.cs
@@ -1,6 +1,7 @@
 using Data.Models;
 using FreeSql;
 using Microsoft.AspNetCore.Mvc;
+using System.Net;
 using Web.Contrib.SiteMessage;
 using Web.Services;
 using Web.ViewModels.Blog;
@@ -51,6 +52,8 @@ public async Task<IActionResult> List(int categoryId = 0, int page = 1, int page
             return RedirectToAction(nameof(List));
         }
 
+        sortBy = System.Net.WebUtility.HtmlEncode(sortBy);
+
         return View(new BlogListViewModel
         {
             CurrentCategory = currentCategory,