diff --git a/src/DebugBar/DataCollector/PDO/TracedStatement.php b/src/DebugBar/DataCollector/PDO/TracedStatement.php
index 3e2800a..23cec5e 100644
--- a/src/DebugBar/DataCollector/PDO/TracedStatement.php
+++ b/src/DebugBar/DataCollector/PDO/TracedStatement.php
@@ -115,7 +115,10 @@ class TracedStatement
      */
     public function getParameters()
     {
-        return $this->parameters;
+		$params = array();
+        foreach($this->parameters as $param){
+            $params[] = htmlentities($param, ENT_QUOTES, 'UTF-8', false);
+        }
     }
 
     /**