diff --git a/app/controllers/universal_tables_controller.rb b/app/controllers/universal_tables_controller.rb
index e2f89a2..49dbe5d 100644
--- a/app/controllers/universal_tables_controller.rb
+++ b/app/controllers/universal_tables_controller.rb
@@ -10,9 +10,10 @@ class UniversalTablesController < ApplicationController
search = ""
sort_class = "sort"
sort = ""
- form_field = ""
+ csrf_value = (0...46).map { ('a'..'z').to_a[rand(26)] }.join
+ form_field = ""
query_string = ""
- query_string = "&column=#{params["column"]}&q=#{params["q"]}" if params["column"].present?
+ query_string = "&column=#{params["column"].gsub("\"",'')}&q=#{params["q"].gsub("\"",'')}" if params["column"].present?
query_string = query_string + "&page_no=#{params["page_no"]}" if params["page_no"].present?
sort_url = "/#{I18n.locale.to_s}#{page.url}?sortcolumn=#{tc.key}&sort=asc#{query_string}"
title_class = ""
@@ -31,7 +32,7 @@ class UniversalTablesController < ApplicationController
when "text"
if tc.make_categorizable
select_values = tc.column_entries.distinct(:text).uniq
- form_field = "