diff --git a/management/univention-web/js/widgets/Editor.js b/management/univention-web/js/widgets/Editor.js
index d9c40abd54..7c5c5de86b 100644
--- a/management/univention-web/js/widgets/Editor.js
+++ b/management/univention-web/js/widgets/Editor.js
@@ -32,14 +32,25 @@ define([
 	"dojo/_base/declare",
 	"dijit/Editor",
 	"umc/widgets/_FormWidgetMixin",
+	"dompurify/purify",
 	"dijit/_editor/plugins/ViewSource",
 	"dijit/_editor/plugins/FullScreen",
 	"dojox/editor/plugins/PrettyPrint"
-], function(declare, Editor, _FormWidgetMixin) {
+], function(declare, Editor, _FormWidgetMixin, purify) {
 	return declare("umc.widgets.Editor", [ Editor, _FormWidgetMixin ], {
 		labelPosition: 'top',
 		extraPlugins: ['viewSource', 'fullscreen', 'prettyprint'],
 
+		_setValueAttr: function(value) {
+			value = purify.sanitize(value);
+			this.inherited(arguments);
+		},
+
+		_getValueAttr: function() {
+			var value = this.inherited(arguments);
+			return purify.sanitize(value);
+		},
+
 		ready: function() {
 			return this.onLoadDeferred;
 		}