diff --git a/new_cytoscape_website/bugreport/attachedFiledownload.php b/new_cytoscape_website/bugreport/attachedFiledownload.php
index 1c1598135fd..8afe050d3df 100644
--- a/new_cytoscape_website/bugreport/attachedFiledownload.php
+++ b/new_cytoscape_website/bugreport/attachedFiledownload.php
@@ -3,7 +3,7 @@
 
 $file_id = null;
 if (isset ($_GET['file_id'])) {
-		$file_id = ($_GET['file_id']);
+		$file_id = mysql_real_escape_string($_GET['file_id']);
 }
 else {
 	exit("File ID unknow!");