diff --git a/app/contexts/search_context.rb b/app/contexts/search_context.rb
index 48def0784fdba884f21753e954638b18046b8482..ff322978559674c389993ea3d95bb92041787e5c 100644
--- a/app/contexts/search_context.rb
+++ b/app/contexts/search_context.rb
@@ -6,7 +6,7 @@ class SearchContext
   end
 
   def execute
-    query = params[:search]
+    query = Shellwords.shellescape(params[:search])
 
     return result unless query.present?