diff --git a/main/inc/lib/main_api.lib.php b/main/inc/lib/main_api.lib.php
index 99e5b589db..f1f399a7f3 100644
--- a/main/inc/lib/main_api.lib.php
+++ b/main/inc/lib/main_api.lib.php
@@ -914,6 +914,15 @@ function api_get_setting($variable, $key = NULL)
 	return is_null($key) ? $_setting[$variable] : $_setting[$variable][$key];
 }
 
+/**
+ * Returns an escaped version of $_SERVER['PHP_SELF'] to avoid XSS injection
+ * @return	string	Escaped version of $_SERVER['PHP_SELF']
+ */
+function api_get_self()
+{
+	return htmlentities($_SERVER['PHP_SELF']);
+}
+
 /*
 ==============================================================================
 		LANGUAGE SUPPORT