From 37fb696e63109094d84b0309b554ee6da6fd3d26 Mon Sep 17 00:00:00 2001
From: johnnyq <johnny@pittpc.com>
Date: Thu, 11 May 2023 18:27:48 -0400
Subject: [PATCH] Replace the remaining php files with nullable_htmlentites()

---
 api_key_add_modal.php                       |   2 +-
 calendar_event_add_modal.php                |   8 +-
 calendar_event_edit_modal.php               |   8 +-
 calendar_events.php                         |  14 +--
 categories.php                              |  10 +-
 category_add_modal.php                      |   4 +-
 category_edit_modal.php                     |   2 +-
 client_add_modal.php                        |   8 +-
 client_asset_add_modal.php                  |  10 +-
 client_asset_copy_modal.php                 |  10 +-
 client_asset_documents_modal.php            |   2 +-
 client_asset_edit_modal.php                 |  10 +-
 client_asset_interface_add_modal.php        |   4 +-
 client_asset_tickets_modal.php              |  10 +-
 client_assets.php                           |  42 +++----
 client_certificate_add_modal.php            |   2 +-
 client_certificates.php                     |  10 +-
 client_contact_add_modal.php                |   2 +-
 client_contact_details.php                  | 102 ++++++++--------
 client_contact_edit_modal.php               |   2 +-
 client_contacts.php                         |  22 ++--
 client_document_add_from_template_modal.php |   4 +-
 client_document_add_modal.php               |   2 +-
 client_document_details.php                 |   8 +-
 client_document_edit_modal.php              |   2 +-
 client_document_template_details.php        |   6 +-
 client_document_templates.php               |  10 +-
 client_documents.php                        |  12 +-
 client_domain_add_modal.php                 |   4 +-
 client_domains.php                          |  10 +-
 client_edit_modal.php                       |   8 +-
 client_events.php                           |  14 +--
 client_files.php                            |  12 +-
 client_invoices.php                         |  20 +--
 client_location_add_modal.php               |   2 +-
 client_location_edit_modal.php              |   2 +-
 client_locations.php                        |  22 ++--
 client_login_add_modal.php                  |   8 +-
 client_login_edit_modal.php                 |   8 +-
 client_logins.php                           |  14 +--
 client_logs.php                             |  16 +--
 client_network_add_modal.php                |   2 +-
 client_networks.php                         |  12 +-
 client_overview.php                         |  34 +++---
 client_payments.php                         |  20 +--
 client_quotes.php                           |  18 +--
 client_recurring_invoices.php               |  20 +--
 client_scheduled_tickets.php                |  10 +-
 client_service_add_modal.php                |  16 +--
 client_service_edit_modal.php               |  14 +--
 client_service_view_modal.php               |   4 +-
 client_services.php                         |  18 +--
 client_shared_items.php                     |  24 ++--
 client_side_nav.php                         |   2 +-
 client_software.php                         |  24 ++--
 client_software_add_from_template_modal.php |   2 +-
 client_software_add_modal.php               |  10 +-
 client_software_edit_modal.php              |  10 +-
 client_tickets.php                          |  30 ++---
 client_trips.php                            |  16 +--
 client_vendors.php                          |  24 ++--
 cron_ticket_email_parser.php                |  10 +-
 custom_field_create_modal.php               |   4 +-
 dashboard_financial.php                     |  14 +--
 expense_add_modal.php                       |   8 +-
 expense_copy_modal.php                      |   8 +-
 expense_edit_modal.php                      |   8 +-
 expense_export_modal.php                    |   4 +-
 expenses.php                                |  26 ++--
 functions.php                               |   2 +-
 get_credential.php                          |   2 +-
 global_search.php                           |  44 +++----
 guest_ajax.php                              |   6 +-
 guest_header.php                            |   4 +-
 guest_pay_invoice_stripe.php                |  34 +++---
 guest_view_invoice.php                      |  92 +++++++-------
 guest_view_item.php                         |  28 ++---
 guest_view_quote.php                        |  52 ++++----
 header.php                                  |   4 +-
 inc_all_client.php                          |  42 +++----
 invoice.php                                 |  76 ++++++------
 invoice_add_modal.php                       |   4 +-
 invoice_edit_modal.php                      |   2 +-
 invoice_payment_add_modal.php               |   4 +-
 invoices.php                                |  26 ++--
 item_edit_modal.php                         |   2 +-
 login.php                                   |   4 +-
 logs.php                                    |  22 ++--
 notifications.php                           |   8 +-
 notifications_dismissed.php                 |  18 +--
 payments.php                                |  24 ++--
 product_add_modal.php                       |   4 +-
 product_edit_modal.php                      |   4 +-
 products.php                                |  12 +-
 quote.php                                   |  68 +++++------
 quote_add_modal.php                         |   4 +-
 quotes.php                                  |  24 ++--
 recurring_invoice.php                       |  66 +++++-----
 recurring_invoice_add_modal.php             |   4 +-
 recurring_invoice_edit_modal.php            |   2 +-
 recurring_invoices.php                      |  26 ++--
 report_expense_by_vendor.php                |   2 +-
 report_expense_summary.php                  |   2 +-
 report_income_by_client.php                 |   2 +-
 report_income_summary.php                   |   2 +-
 report_profit_loss.php                      |   4 +-
 report_recurring_by_client.php              |   2 +-
 report_tax_summary.php                      |   2 +-
 report_ticket_by_client.php                 |   2 +-
 revenue_add_modal.php                       |   8 +-
 revenue_edit_modal.php                      |   8 +-
 revenues.php                                |  22 ++--
 scheduled_ticket_add_modal.php              |   6 +-
 scheduled_tickets.php                       |  12 +-
 settings_alerts.php                         |   4 +-
 settings_api.php                            |  12 +-
 settings_company.php                        |  24 ++--
 settings_custom_fields.php                  |  10 +-
 settings_defaults.php                       |  14 +--
 settings_integrations.php                   |   4 +-
 settings_invoice.php                        |  10 +-
 settings_mail.php                           |  12 +-
 settings_online_payment.php                 |   6 +-
 settings_quote.php                          |   8 +-
 settings_side_nav.php                       |   2 +-
 settings_software_templates.php             |  20 +--
 settings_tags.php                           |  10 +-
 settings_taxes.php                          |   2 +-
 settings_ticket.php                         |   6 +-
 settings_vendor_templates.php               |  24 ++--
 setup.php                                   |   2 +-
 side_nav.php                                |   4 +-
 ticket.php                                  | 128 ++++++++++----------
 ticket_add_modal.php                        |  10 +-
 ticket_edit_modal.php                       |   8 +-
 ticket_invoice_add_modal.php                |  14 +--
 ticket_reply_edit_modal.php                 |   2 +-
 tickets.php                                 |  36 +++---
 top_nav.php                                 |  14 +--
 transfer_add_modal.php                      |   4 +-
 transfer_edit_modal.php                     |   4 +-
 transfers.php                               |  16 +--
 trip_add_modal.php                          |   4 +-
 trip_copy_modal.php                         |   4 +-
 trip_edit_modal.php                         |   4 +-
 trip_export_modal.php                       |   4 +-
 trips.php                                   |  20 +--
 user_profile.php                            |  26 ++--
 users.php                                   |  18 +--
 vendor_add_from_template_modal.php          |   2 +-
 vendor_edit_modal.php                       |   2 +-
 vendors.php                                 |  28 ++---
 152 files changed, 1085 insertions(+), 1085 deletions(-)

diff --git a/api_key_add_modal.php b/api_key_add_modal.php
index 0887420a..903e8ea6 100644
--- a/api_key_add_modal.php
+++ b/api_key_add_modal.php
@@ -64,7 +64,7 @@ $key = randomString(156);
                                 $sql = mysqli_query($mysqli, "SELECT * FROM clients ORDER BY client_name ASC");
                                 while ($row = mysqli_fetch_array($sql)) {
                                     $client_id = intval($row['client_id']);
-                                    $client_name = htmlentities($row['client_name']); ?>
+                                    $client_name = nullable_htmlentities($row['client_name']); ?>
                                     <option value="<?php echo $client_id; ?>"><?php echo "$client_name  (Client ID: $client_id)"; ?></option>
                                 <?php } ?>
                             </select>
diff --git a/calendar_event_add_modal.php b/calendar_event_add_modal.php
index 6d2cb82f..a372f4a2 100644
--- a/calendar_event_add_modal.php
+++ b/calendar_event_add_modal.php
@@ -51,8 +51,8 @@
                                         $sql = mysqli_query($mysqli, "SELECT * FROM calendars ORDER BY calendar_name ASC");
                                         while ($row = mysqli_fetch_array($sql)) {
                                             $calendar_id = intval($row['calendar_id']);
-                                            $calendar_name = htmlentities($row['calendar_name']);
-                                            $calendar_color = htmlentities($row['calendar_color']);
+                                            $calendar_name = nullable_htmlentities($row['calendar_name']);
+                                            $calendar_color = nullable_htmlentities($row['calendar_color']);
                                             ?>
                                             <option <?php if ($config_default_calendar == $calendar_id) { echo "selected"; } ?> data-content="<i class='fa fa-circle mr-2' style='color:<?php echo $calendar_color; ?>;'></i> <?php echo $calendar_name; ?>" value="<?php echo $calendar_id; ?>"><?php echo $calendar_name; ?></option>
                                         <?php } ?>
@@ -120,8 +120,8 @@
                                             $sql = mysqli_query($mysqli, "SELECT * FROM clients LEFT JOIN contacts ON primary_contact = contact_id ORDER BY client_name ASC");
                                             while ($row = mysqli_fetch_array($sql)) {
                                                 $client_id = intval($row['client_id']);
-                                                $client_name = htmlentities($row['client_name']);
-                                                $contact_email = htmlentities($row['contact_email']);
+                                                $client_name = nullable_htmlentities($row['client_name']);
+                                                $contact_email = nullable_htmlentities($row['contact_email']);
                                                 ?>
                                                 <option value="<?php echo $client_id; ?>"><?php echo $client_name; ?></option>
 
diff --git a/calendar_event_edit_modal.php b/calendar_event_edit_modal.php
index d4993e70..0c279df5 100644
--- a/calendar_event_edit_modal.php
+++ b/calendar_event_edit_modal.php
@@ -53,8 +53,8 @@
                                         $sql_calendars_select = mysqli_query($mysqli, "SELECT * FROM calendars ORDER BY calendar_name ASC");
                                         while ($row = mysqli_fetch_array($sql_calendars_select)) {
                                             $calendar_id_select = intval($row['calendar_id']);
-                                            $calendar_name_select = htmlentities($row['calendar_name']);
-                                            $calendar_color_select = htmlentities($row['calendar_color']);
+                                            $calendar_name_select = nullable_htmlentities($row['calendar_name']);
+                                            $calendar_color_select = nullable_htmlentities($row['calendar_color']);
                                             ?>
                                             <option data-content="<i class='fa fa-circle mr-2' style='color:<?php echo $calendar_color_select; ?>;'></i> <?php echo $calendar_name_select; ?>"<?php if ($calendar_id == $calendar_id_select) { echo "selected"; } ?> value="<?php echo $calendar_id_select; ?>"><?php echo $calendar_name_select; ?></option>
 
@@ -119,8 +119,8 @@
                                             $sql_clients = mysqli_query($mysqli, "SELECT * FROM clients LEFT JOIN contacts ON primary_contact = contact_id ORDER BY client_name ASC");
                                             while ($row = mysqli_fetch_array($sql_clients)) {
                                                 $client_id_select = intval($row['client_id']);
-                                                $client_name_select = htmlentities($row['client_name']);
-                                                $contact_email_select = htmlentities($row['contact_email']);
+                                                $client_name_select = nullable_htmlentities($row['client_name']);
+                                                $contact_email_select = nullable_htmlentities($row['contact_email']);
                                                 ?>
                                                 <option <?php if ($client_id == $client_id_select) { echo "selected"; } ?> value="<?php echo $client_id_select; ?>"><?php echo $client_name_select; ?></option>
 
diff --git a/calendar_events.php b/calendar_events.php
index b1728483..cc8a80c8 100644
--- a/calendar_events.php
+++ b/calendar_events.php
@@ -21,14 +21,14 @@ require_once("category_quick_add_modal.php");
 $sql = mysqli_query($mysqli, "SELECT * FROM events LEFT JOIN calendars ON event_calendar_id = calendar_id");
 while ($row = mysqli_fetch_array($sql)) {
     $event_id = intval($row['event_id']);
-    $event_title = htmlentities($row['event_title']);
-    $event_description = htmlentities($row['event_description']);
-    $event_start = htmlentities($row['event_start']);
-    $event_end = htmlentities($row['event_end']);
-    $event_repeat = htmlentities($row['event_repeat']);
+    $event_title = nullable_htmlentities($row['event_title']);
+    $event_description = nullable_htmlentities($row['event_description']);
+    $event_start = nullable_htmlentities($row['event_start']);
+    $event_end = nullable_htmlentities($row['event_end']);
+    $event_repeat = nullable_htmlentities($row['event_repeat']);
     $calendar_id = intval($row['calendar_id']);
-    $calendar_name = htmlentities($row['calendar_name']);
-    $calendar_color = htmlentities($row['calendar_color']);
+    $calendar_name = nullable_htmlentities($row['calendar_name']);
+    $calendar_color = nullable_htmlentities($row['calendar_color']);
     $client_id = intval($row['event_client_id']);
 
     require("calendar_event_edit_modal.php");
diff --git a/categories.php b/categories.php
index 83575ba5..d0c2851a 100644
--- a/categories.php
+++ b/categories.php
@@ -46,18 +46,18 @@ $colors_diff = array_diff($colors_array, $colors_used_array);
 
     <div class="card card-dark">
         <div class="card-header py-2">
-            <h3 class="card-title mt-2"><i class="fa fa-fw fa-list mr-2"></i><?php echo htmlentities($category); ?> Categories</h3>
+            <h3 class="card-title mt-2"><i class="fa fa-fw fa-list mr-2"></i><?php echo nullable_htmlentities($category); ?> Categories</h3>
             <div class="card-tools">
                 <button type="button" class="btn btn-primary" data-toggle="modal" data-target="#addCategoryModal"><i class="fas fa-plus mr-2"></i>New</button>
             </div>
         </div>
         <div class="card-body">
             <form autocomplete="off">
-                <input type="hidden" name="category" value="<?php echo htmlentities($category); ?>">
+                <input type="hidden" name="category" value="<?php echo nullable_htmlentities($category); ?>">
                 <div class="row">
                     <div class="col-sm-4 mb-2">
                         <div class="input-group">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Categories">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Categories">
                             <div class="input-group-append">
                                 <button class="btn btn-primary"><i class="fa fa-search"></i></button>
                             </div>
@@ -88,8 +88,8 @@ $colors_diff = array_diff($colors_array, $colors_used_array);
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $category_id = intval($row['category_id']);
-                        $category_name = htmlentities($row['category_name']);
-                        $category_color = htmlentities($row['category_color']);
+                        $category_name = nullable_htmlentities($row['category_name']);
+                        $category_color = nullable_htmlentities($row['category_color']);
                         //$colors_used_array[] = $row['category_color'];
 
                         ?>
diff --git a/category_add_modal.php b/category_add_modal.php
index d99eb0b4..811175e7 100644
--- a/category_add_modal.php
+++ b/category_add_modal.php
@@ -2,13 +2,13 @@
     <div class="modal-dialog">
         <div class="modal-content bg-dark">
             <div class="modal-header">
-                <h5 class="modal-title"><i class="fa fa-fw fa-list mr-2"></i>New <?php echo htmlentities($category); ?> Category</h5>
+                <h5 class="modal-title"><i class="fa fa-fw fa-list mr-2"></i>New <?php echo nullable_htmlentities($category); ?> Category</h5>
                 <button type="button" class="close text-white" data-dismiss="modal">
                     <span>&times;</span>
                 </button>
             </div>
             <form action="post.php" method="post" autocomplete="off">
-                <input type="hidden" name="type" value="<?php echo htmlentities($category); ?>">
+                <input type="hidden" name="type" value="<?php echo nullable_htmlentities($category); ?>">
 
                 <div class="modal-body bg-white">
 
diff --git a/category_edit_modal.php b/category_edit_modal.php
index 5a8fd17e..0e1f8494 100644
--- a/category_edit_modal.php
+++ b/category_edit_modal.php
@@ -9,7 +9,7 @@
             </div>
             <form action="post.php" method="post" autocomplete="off">
                 <input type="hidden" name="category_id" value="<?php echo $category_id; ?>">
-                <input type="hidden" name="type" value="<?php echo htmlentities($category); ?>">
+                <input type="hidden" name="type" value="<?php echo nullable_htmlentities($category); ?>">
                 <div class="modal-body bg-white">
 
                     <div class="form-group">
diff --git a/client_add_modal.php b/client_add_modal.php
index c2547b2b..6f9dcb2f 100644
--- a/client_add_modal.php
+++ b/client_add_modal.php
@@ -66,7 +66,7 @@
 
                                         $referral_sql = mysqli_query($mysqli, "SELECT * FROM categories WHERE category_type = 'Referral' AND category_archived_at IS NULL ORDER BY category_name ASC");
                                         while ($row = mysqli_fetch_array($referral_sql)) {
-                                            $referral = htmlentities($row['category_name']); ?>
+                                            $referral = nullable_htmlentities($row['category_name']); ?>
                                             <option><?php echo $referral; ?></option>
                                         <?php } ?>
 
@@ -296,9 +296,9 @@
 
                                 while ($row = mysqli_fetch_array($sql_tags_select)) {
                                     $tag_id_select = intval($row['tag_id']);
-                                    $tag_name_select = htmlentities($row['tag_name']);
-                                    $tag_color_select = htmlentities($row['tag_color']);
-                                    $tag_icon_select = htmlentities($row['tag_icon']);
+                                    $tag_name_select = nullable_htmlentities($row['tag_name']);
+                                    $tag_color_select = nullable_htmlentities($row['tag_color']);
+                                    $tag_icon_select = nullable_htmlentities($row['tag_icon']);
 
                                     ?>
                                     <li class="list-group-item">
diff --git a/client_asset_add_modal.php b/client_asset_add_modal.php
index 39b7d455..eb1d1f03 100644
--- a/client_asset_add_modal.php
+++ b/client_asset_add_modal.php
@@ -125,7 +125,7 @@
                                         $sql = mysqli_query($mysqli, "SELECT * FROM locations WHERE location_archived_at IS NULL AND location_client_id = $client_id ORDER BY location_name ASC");
                                         while ($row = mysqli_fetch_array($sql)) {
                                             $location_id = intval($row['location_id']);
-                                            $location_name = htmlentities($row['location_name']);
+                                            $location_name = nullable_htmlentities($row['location_name']);
                                             ?>
                                             <option value="<?php echo $location_id; ?>"><?php echo $location_name; ?></option>
                                         <?php } ?>
@@ -148,7 +148,7 @@
                                             $sql = mysqli_query($mysqli, "SELECT * FROM contacts WHERE contact_archived_at IS NULL AND contact_client_id = $client_id ORDER BY contact_name ASC");
                                             while ($row = mysqli_fetch_array($sql)) {
                                                 $contact_id = intval($row['contact_id']);
-                                                $contact_name = htmlentities($row['contact_name']);
+                                                $contact_name = nullable_htmlentities($row['contact_name']);
                                                 ?>
                                                 <option value="<?php echo $contact_id; ?>"><?php echo $contact_name; ?></option>
 
@@ -187,8 +187,8 @@
                                         $sql = mysqli_query($mysqli, "SELECT * FROM networks WHERE network_archived_at IS NULL AND network_client_id = $client_id ORDER BY network_name ASC");
                                         while ($row = mysqli_fetch_array($sql)) {
                                             $network_id = intval($row['network_id']);
-                                            $network_name = htmlentities($row['network_name']);
-                                            $network = htmlentities($row['network']);
+                                            $network_name = nullable_htmlentities($row['network_name']);
+                                            $network = nullable_htmlentities($row['network']);
 
                                             ?>
                                             <option value="<?php echo $network_id; ?>"><?php echo $network_name; ?> - <?php echo $network; ?></option>
@@ -235,7 +235,7 @@
                                         $sql = mysqli_query($mysqli, "SELECT * FROM vendors WHERE vendor_archived_at IS NULL AND vendor_client_id = $client_id AND vendor_template = 0 ORDER BY vendor_name ASC");
                                         while ($row = mysqli_fetch_array($sql)) {
                                             $vendor_id = intval($row['vendor_id']);
-                                            $vendor_name = htmlentities($row['vendor_name']);
+                                            $vendor_name = nullable_htmlentities($row['vendor_name']);
                                             ?>
                                             <option value="<?php echo $vendor_id; ?>"><?php echo $vendor_name; ?></option>
 
diff --git a/client_asset_copy_modal.php b/client_asset_copy_modal.php
index 7f322248..e68ccdac 100644
--- a/client_asset_copy_modal.php
+++ b/client_asset_copy_modal.php
@@ -122,7 +122,7 @@
                                         $sql_locations = mysqli_query($mysqli, "SELECT * FROM locations WHERE location_client_id = $client_id ORDER BY location_name ASC");
                                         while ($row = mysqli_fetch_array($sql_locations)) {
                                             $location_id_select = intval($row['location_id']);
-                                            $location_name_select = htmlentities($row['location_name']);
+                                            $location_name_select = nullable_htmlentities($row['location_name']);
                                             ?>
                                             <option <?php if ($asset_location_id == $location_id_select) { echo "selected"; } ?> value="<?php echo $location_id_select; ?>"><?php echo $location_name_select; ?></option>
                                         <?php } ?>
@@ -145,7 +145,7 @@
                                             $sql_contacts = mysqli_query($mysqli, "SELECT * FROM contacts WHERE contact_archived_at IS NULL AND contact_client_id = $client_id ORDER BY contact_name ASC");
                                             while ($row = mysqli_fetch_array($sql_contacts)) {
                                                 $contact_id = intval($row['contact_id']);
-                                                $contact_name = htmlentities($row['contact_name']);
+                                                $contact_name = nullable_htmlentities($row['contact_name']);
                                                 ?>
                                                 <option value="<?php echo $contact_id; ?>"><?php echo $contact_name; ?></option>
                                             <?php } ?>
@@ -182,8 +182,8 @@
                                         $sql_networks = mysqli_query($mysqli, "SELECT * FROM networks WHERE (network_archived_at > '$asset_created_at' OR network_archived_at IS NULL) AND network_client_id = $client_id ORDER BY network_name ASC");
                                         while ($row = mysqli_fetch_array($sql_networks)) {
                                             $network_id_select = intval($row['network_id']);
-                                            $network_name_select = htmlentities($row['network_name']);
-                                            $network_select = htmlentities($row['network']);
+                                            $network_name_select = nullable_htmlentities($row['network_name']);
+                                            $network_select = nullable_htmlentities($row['network']);
 
                                             ?>
                                             <option <?php if ($asset_network_id == $network_id_select) { echo "selected"; } ?> value="<?php echo $network_id_select; ?>"><?php echo $network_name_select; ?> - <?php echo $network_select; ?></option>
@@ -230,7 +230,7 @@
                                         $sql_vendors = mysqli_query($mysqli, "SELECT * FROM vendors WHERE (vendor_archived_at > '$asset_created_at' OR vendor_archived_at IS NULL) AND vendor_client_id = $client_id  AND vendor_template = 0 ORDER BY vendor_name ASC");
                                         while ($row = mysqli_fetch_array($sql_vendors)) {
                                             $vendor_id_select = intval($row['vendor_id']);
-                                            $vendor_name_select = htmlentities($row['vendor_name']);
+                                            $vendor_name_select = nullable_htmlentities($row['vendor_name']);
                                             ?>
                                             <option <?php if ($asset_vendor_id == $vendor_id_select) { echo "selected"; } ?> value="<?php echo $vendor_id_select; ?>"><?php echo $vendor_name_select; ?></option>
 
diff --git a/client_asset_documents_modal.php b/client_asset_documents_modal.php
index 1c6e5829..bf7e7234 100644
--- a/client_asset_documents_modal.php
+++ b/client_asset_documents_modal.php
@@ -12,7 +12,7 @@
                 <?php
                 while ($row = mysqli_fetch_array($sql_related_documents)) {
                     $related_document_id = intval($row['document_id']);
-                    $related_document_name = htmlentities($row['document_name']);
+                    $related_document_name = nullable_htmlentities($row['document_name']);
                     ?>
                     <p>
                         <i class="fas fa-fw fa-document text-secondary"></i>
diff --git a/client_asset_edit_modal.php b/client_asset_edit_modal.php
index ee575ba9..949b7b77 100644
--- a/client_asset_edit_modal.php
+++ b/client_asset_edit_modal.php
@@ -124,7 +124,7 @@
                                         $sql_locations = mysqli_query($mysqli, "SELECT * FROM locations WHERE location_client_id = $client_id ORDER BY location_name ASC");
                                         while ($row = mysqli_fetch_array($sql_locations)) {
                                             $location_id_select = intval($row['location_id']);
-                                            $location_name_select = htmlentities($row['location_name']);
+                                            $location_name_select = nullable_htmlentities($row['location_name']);
                                             ?>
                                             <option <?php if ($asset_location_id == $location_id_select) { echo "selected"; } ?> value="<?php echo $location_id_select; ?>"><?php echo $location_name_select; ?></option>
 
@@ -146,7 +146,7 @@
                                         $sql_contacts = mysqli_query($mysqli, "SELECT * FROM contacts WHERE (contact_archived_at > '$asset_created_at' OR contact_archived_at IS NULL) AND contact_client_id = $client_id ORDER BY contact_name ASC");
                                         while ($row = mysqli_fetch_array($sql_contacts)) {
                                             $contact_id_select = intval($row['contact_id']);
-                                            $contact_name_select = htmlentities($row['contact_name']);
+                                            $contact_name_select = nullable_htmlentities($row['contact_name']);
                                             ?>
                                             <option <?php if ($asset_contact_id == $contact_id_select) { echo "selected"; } ?> value="<?php echo $contact_id_select; ?>">
                                                 <?php echo $contact_name_select; ?> <?php if (!empty($row['contact_archived_at'])) { echo " (Archived " . date('Y-m-d', strtotime($row['contact_archived_at'])) .")"; } ?>
@@ -184,8 +184,8 @@
                                         $sql_networks = mysqli_query($mysqli, "SELECT * FROM networks WHERE (network_archived_at > '$asset_created_at' OR network_archived_at IS NULL) AND network_client_id = $client_id ORDER BY network_name ASC");
                                         while ($row = mysqli_fetch_array($sql_networks)) {
                                             $network_id_select = intval($row['network_id']);
-                                            $network_name_select = htmlentities($row['network_name']);
-                                            $network_select = htmlentities($row['network']);
+                                            $network_name_select = nullable_htmlentities($row['network_name']);
+                                            $network_select = nullable_htmlentities($row['network']);
 
                                             ?>
                                             <option <?php if ($asset_network_id == $network_id_select) { echo "selected"; } ?> value="<?php echo $network_id_select; ?>"><?php echo $network_name_select; ?> - <?php echo $network_select; ?></option>
@@ -232,7 +232,7 @@
                                         $sql_vendors = mysqli_query($mysqli, "SELECT * FROM vendors WHERE (vendor_archived_at > '$asset_created_at' OR vendor_archived_at IS NULL) AND vendor_client_id = $client_id ORDER BY vendor_name ASC");
                                         while ($row = mysqli_fetch_array($sql_vendors)) {
                                             $vendor_id_select = intval($row['vendor_id']);
-                                            $vendor_name_select = htmlentities($row['vendor_name']);
+                                            $vendor_name_select = nullable_htmlentities($row['vendor_name']);
                                             ?>
                                             <option <?php if ($asset_vendor_id == $vendor_id_select) { echo "selected"; } ?> value="<?php echo $vendor_id_select; ?>"><?php echo $vendor_name_select; ?></option>
 
diff --git a/client_asset_interface_add_modal.php b/client_asset_interface_add_modal.php
index 6a36cc0b..0f82900f 100644
--- a/client_asset_interface_add_modal.php
+++ b/client_asset_interface_add_modal.php
@@ -78,8 +78,8 @@
                                         $sql_network_select = mysqli_query($mysqli, "SELECT * FROM networks WHERE network_archived_at IS NULL AND network_client_id = $client_id ORDER BY network_name ASC");
                                         while ($row = mysqli_fetch_array($sql_network_select)) {
                                             $network_id = $row['network_id'];
-                                            $network_name = htmlentities($row['network_name']);
-                                            $network = htmlentities($row['network']);
+                                            $network_name = nullable_htmlentities($row['network_name']);
+                                            $network = nullable_htmlentities($row['network']);
 
                                             ?>
                                             <option value="<?php echo $network_id; ?>"><?php echo $network_name; ?> - <?php echo $network; ?></option>
diff --git a/client_asset_tickets_modal.php b/client_asset_tickets_modal.php
index d35f515f..70ce1b9b 100644
--- a/client_asset_tickets_modal.php
+++ b/client_asset_tickets_modal.php
@@ -13,12 +13,12 @@
                 // Query is run from client_assets.php
                 while ($row = mysqli_fetch_array($sql_tickets)) {
                     $ticket_id = intval($row['ticket_id']);
-                    $ticket_prefix = htmlentities($row['ticket_prefix']);
+                    $ticket_prefix = nullable_htmlentities($row['ticket_prefix']);
                     $ticket_number = intval($row['ticket_number']);
-                    $ticket_subject = htmlentities($row['ticket_subject']);
-                    $ticket_status = htmlentities($row['ticket_status']);
-                    $ticket_created_at = htmlentities($row['ticket_created_at']);
-                    $ticket_updated_at = htmlentities($row['ticket_updated_at']);
+                    $ticket_subject = nullable_htmlentities($row['ticket_subject']);
+                    $ticket_status = nullable_htmlentities($row['ticket_status']);
+                    $ticket_created_at = nullable_htmlentities($row['ticket_created_at']);
+                    $ticket_updated_at = nullable_htmlentities($row['ticket_updated_at']);
                     ?>
                     <p>
                         <i class="fas fa-fw fa-ticket-alt"></i>
diff --git a/client_assets.php b/client_assets.php
index 78ccef72..f2f39e4d 100644
--- a/client_assets.php
+++ b/client_assets.php
@@ -75,18 +75,18 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
         <div class="card-header py-2">
             <h3 class="card-title mt-2"><i class="fa fa-fw fa-desktop mr-2"></i>Assets</h3>
             <div class="card-tools">
-                <button type="button" class="btn btn-primary" data-toggle="modal" data-target="#addAssetModal"><i class="fas fa-plus mr-2"></i>New <?php if (!empty($_GET['type'])) { echo ucwords(strip_tags(htmlentities($_GET['type']))); } else { echo "Asset"; } ?></button>
+                <button type="button" class="btn btn-primary" data-toggle="modal" data-target="#addAssetModal"><i class="fas fa-plus mr-2"></i>New <?php if (!empty($_GET['type'])) { echo ucwords(strip_tags(nullable_htmlentities($_GET['type']))); } else { echo "Asset"; } ?></button>
             </div>
         </div>
         <div class="card-body">
             <form autocomplete="off">
                 <input type="hidden" name="client_id" value="<?php echo $client_id; ?>">
-                <input type="hidden" name="type" value="<?php echo stripslashes(htmlentities($_GET['type'])); ?>">
+                <input type="hidden" name="type" value="<?php echo stripslashes(nullable_htmlentities($_GET['type'])); ?>">
                 <div class="row">
 
                     <div class="col-md-4">
                         <div class="input-group mb-3 mb-md-0">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search <?php if (!empty($_GET['type'])) { echo ucwords(stripslashes(htmlentities($_GET['type']))); } else { echo "Asset"; } ?>s">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search <?php if (!empty($_GET['type'])) { echo ucwords(stripslashes(nullable_htmlentities($_GET['type']))); } else { echo "Asset"; } ?>s">
                             <div class="input-group-append">
                                 <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                             </div>
@@ -161,40 +161,40 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $asset_id = intval($row['asset_id']);
-                        $asset_type = htmlentities($row['asset_type']);
-                        $asset_name = htmlentities($row['asset_name']);
-                        $asset_make = htmlentities($row['asset_make']);
-                        $asset_model = htmlentities($row['asset_model']);
-                        $asset_serial = htmlentities($row['asset_serial']);
+                        $asset_type = nullable_htmlentities($row['asset_type']);
+                        $asset_name = nullable_htmlentities($row['asset_name']);
+                        $asset_make = nullable_htmlentities($row['asset_make']);
+                        $asset_model = nullable_htmlentities($row['asset_model']);
+                        $asset_serial = nullable_htmlentities($row['asset_serial']);
                         if (empty($asset_serial)) {
                             $asset_serial_display = "-";
                         } else {
                             $asset_serial_display = $asset_serial;
                         }
-                        $asset_os = htmlentities($row['asset_os']);
+                        $asset_os = nullable_htmlentities($row['asset_os']);
                         if (empty($asset_os)) {
                             $asset_os_display = "-";
                         } else {
                             $asset_os_display = $asset_os;
                         }
-                        $asset_ip = htmlentities($row['asset_ip']);
+                        $asset_ip = nullable_htmlentities($row['asset_ip']);
                         if (empty($asset_ip)) {
                             $asset_ip_display = "-";
                         } else {
                             $asset_ip_display = "$asset_ip<button class='btn btn-sm' data-clipboard-text=" . $asset_ip . "><i class='far fa-copy text-secondary'></i></button>";
                         }
-                        $asset_mac = htmlentities($row['asset_mac']);
-                        $asset_status = htmlentities($row['asset_status']);
-                        $asset_purchase_date = htmlentities($row['asset_purchase_date']);
-                        $asset_warranty_expire = htmlentities($row['asset_warranty_expire']);
-                        $asset_install_date = htmlentities($row['asset_install_date']);
+                        $asset_mac = nullable_htmlentities($row['asset_mac']);
+                        $asset_status = nullable_htmlentities($row['asset_status']);
+                        $asset_purchase_date = nullable_htmlentities($row['asset_purchase_date']);
+                        $asset_warranty_expire = nullable_htmlentities($row['asset_warranty_expire']);
+                        $asset_install_date = nullable_htmlentities($row['asset_install_date']);
                         if (empty($asset_install_date)) {
                             $asset_install_date_display = "-";
                         } else {
                             $asset_install_date_display = $asset_install_date;
                         }
-                        $asset_notes = htmlentities($row['asset_notes']);
-                        $asset_created_at = htmlentities($row['asset_created_at']);
+                        $asset_notes = nullable_htmlentities($row['asset_notes']);
+                        $asset_created_at = nullable_htmlentities($row['asset_created_at']);
                         $asset_vendor_id = intval($row['asset_vendor_id']);
                         $asset_location_id = intval($row['asset_location_id']);
                         $asset_contact_id = intval($row['asset_contact_id']);
@@ -202,19 +202,19 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                         $device_icon = getAssetIcon($asset_type);
 
-                        $contact_name = htmlentities($row['contact_name']);
+                        $contact_name = nullable_htmlentities($row['contact_name']);
                         if (empty($contact_name)) {
                             $contact_name = "-";
                         }
 
-                        $location_name = htmlentities($row['location_name']);
+                        $location_name = nullable_htmlentities($row['location_name']);
                         if (empty($location_name)) {
                             $location_name = "-";
                         }
 
                         $login_id = intval($row['login_id']);
-                        $login_username = htmlentities(decryptLoginEntry($row['login_username']));
-                        $login_password = htmlentities(decryptLoginEntry($row['login_password']));
+                        $login_username = nullable_htmlentities(decryptLoginEntry($row['login_username']));
+                        $login_password = nullable_htmlentities(decryptLoginEntry($row['login_password']));
 
                         // Related tickets
                         $sql_tickets = mysqli_query($mysqli, "SELECT * FROM tickets WHERE ticket_asset_id = $asset_id ORDER BY ticket_number DESC");
diff --git a/client_certificate_add_modal.php b/client_certificate_add_modal.php
index 1a15124a..3e36d9de 100644
--- a/client_certificate_add_modal.php
+++ b/client_certificate_add_modal.php
@@ -76,7 +76,7 @@
                                 $domains_sql = mysqli_query($mysqli, "SELECT * FROM domains WHERE domain_client_id = '$client_id'");
                                 while ($domain_row = mysqli_fetch_array($domains_sql)) {
                                     $domain_id = intval($domain_row['domain_id']);
-                                    $domain_name = htmlentities($domain_row['domain_name']);
+                                    $domain_name = nullable_htmlentities($domain_row['domain_name']);
                                     echo "<option value=\"$domain_id\">$domain_name</option>";
                                 }
                                 ?>
diff --git a/client_certificates.php b/client_certificates.php
index 99404fc2..5b420ea1 100644
--- a/client_certificates.php
+++ b/client_certificates.php
@@ -31,7 +31,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 <div class="col-md-4">
                     <div class="input-group mb-3 mb-md-0">
-                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Certificates">
+                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Certificates">
                         <div class="input-group-append">
                             <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                         </div>
@@ -86,10 +86,10 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $certificate_id = intval($row['certificate_id']);
-                        $certificate_name = htmlentities($row['certificate_name']);
-                        $certificate_domain = htmlentities($row['certificate_domain']);
-                        $certificate_issued_by = htmlentities($row['certificate_issued_by']);
-                        $certificate_expire = htmlentities($row['certificate_expire']);
+                        $certificate_name = nullable_htmlentities($row['certificate_name']);
+                        $certificate_domain = nullable_htmlentities($row['certificate_domain']);
+                        $certificate_issued_by = nullable_htmlentities($row['certificate_issued_by']);
+                        $certificate_expire = nullable_htmlentities($row['certificate_expire']);
 
                         ?>
                         <tr>
diff --git a/client_contact_add_modal.php b/client_contact_add_modal.php
index 011e5326..c3e8ba31 100644
--- a/client_contact_add_modal.php
+++ b/client_contact_add_modal.php
@@ -123,7 +123,7 @@
                                         $sql = mysqli_query($mysqli, "SELECT location_id, location_name FROM locations WHERE location_archived_at IS NULL AND location_client_id = $client_id ORDER BY location_name ASC");
                                         while ($row = mysqli_fetch_array($sql)) {
                                             $location_id = intval($row['location_id']);
-                                            $location_name = htmlentities($row['location_name']);
+                                            $location_name = nullable_htmlentities($row['location_name']);
                                             ?>
                                             <option value="<?php echo $location_id; ?>"><?php echo $location_name; ?></option>
                                         <?php } ?>
diff --git a/client_contact_details.php b/client_contact_details.php
index a3213bef..44eab863 100644
--- a/client_contact_details.php
+++ b/client_contact_details.php
@@ -11,33 +11,33 @@ if (isset($_GET['contact_id'])) {
     ");
 
     $row = mysqli_fetch_array($sql);
-    $contact_name = htmlentities($row['contact_name']);
-    $contact_title = htmlentities($row['contact_title']);
-    $contact_department =htmlentities($row['contact_department']);
+    $contact_name = nullable_htmlentities($row['contact_name']);
+    $contact_title = nullable_htmlentities($row['contact_title']);
+    $contact_department =nullable_htmlentities($row['contact_department']);
     $contact_phone = formatPhoneNumber($row['contact_phone']);
-    $contact_extension = htmlentities($row['contact_extension']);
+    $contact_extension = nullable_htmlentities($row['contact_extension']);
     $contact_mobile = formatPhoneNumber($row['contact_mobile']);
-    $contact_email = htmlentities($row['contact_email']);
-    $contact_photo = htmlentities($row['contact_photo']);
+    $contact_email = nullable_htmlentities($row['contact_email']);
+    $contact_photo = nullable_htmlentities($row['contact_photo']);
     $contact_initials = initials($contact_name);
-    $contact_notes = htmlentities($row['contact_notes']);
+    $contact_notes = nullable_htmlentities($row['contact_notes']);
     $contact_important = intval($row['contact_important']);
     $contact_billing = intval($row['contact_billing']);
     $contact_technical = intval($row['contact_technical']);
-    $contact_created_at = htmlentities($row['contact_created_at']);
+    $contact_created_at = nullable_htmlentities($row['contact_created_at']);
     if ($contact_id == $primary_contact) {
         $primary_contact_display = "<small class='text-success'>Primary Contact</small>";
     } else {
         $primary_contact_display = false;
     }
     $contact_location_id = intval($row['contact_location_id']);
-    $location_name = htmlentities($row['location_name']);
+    $location_name = nullable_htmlentities($row['location_name']);
     if (empty($location_name)) {
         $location_name_display = "-";
     } else {
         $location_name_display = $location_name;
     }
-    $auth_method = htmlentities($row['contact_auth_method']);
+    $auth_method = nullable_htmlentities($row['contact_auth_method']);
 
     // Related Assets Query
     $sql_related_assets = mysqli_query($mysqli, "SELECT * FROM assets LEFT JOIN logins ON logins.login_asset_id = assets.asset_id WHERE asset_contact_id = $contact_id ORDER BY asset_name DESC");
@@ -165,48 +165,48 @@ if (isset($_GET['contact_id'])) {
 
                             while ($row = mysqli_fetch_array($sql_related_assets)) {
                                 $asset_id = intval($row['asset_id']);
-                                $asset_type = htmlentities($row['asset_type']);
-                                $asset_name = htmlentities($row['asset_name']);
-                                $asset_make = htmlentities($row['asset_make']);
-                                $asset_model = htmlentities($row['asset_model']);
-                                $asset_serial = htmlentities($row['asset_serial']);
+                                $asset_type = nullable_htmlentities($row['asset_type']);
+                                $asset_name = nullable_htmlentities($row['asset_name']);
+                                $asset_make = nullable_htmlentities($row['asset_make']);
+                                $asset_model = nullable_htmlentities($row['asset_model']);
+                                $asset_serial = nullable_htmlentities($row['asset_serial']);
                                 if (empty($asset_serial)) {
                                     $asset_serial_display = "-";
                                 } else {
                                     $asset_serial_display = $asset_serial;
                                 }
-                                $asset_os = htmlentities($row['asset_os']);
+                                $asset_os = nullable_htmlentities($row['asset_os']);
                                 if (empty($asset_os)) {
                                     $asset_os_display = "-";
                                 } else {
                                     $asset_os_display = $asset_os;
                                 }
-                                $asset_ip = htmlentities($row['asset_ip']);
+                                $asset_ip = nullable_htmlentities($row['asset_ip']);
                                 if (empty($asset_ip)) {
                                     $asset_ip_display = "-";
                                 } else {
                                     $asset_ip_display = "$asset_ip<button class='btn btn-sm' data-clipboard-text='$asset_ip'><i class='far fa-copy text-secondary'></i></button>";
                                 }
-                                $asset_mac = htmlentities($row['asset_mac']);
-                                $asset_status = htmlentities($row['asset_status']);
-                                $asset_purchase_date = htmlentities($row['asset_purchase_date']);
-                                $asset_warranty_expire = htmlentities($row['asset_warranty_expire']);
-                                $asset_install_date = htmlentities($row['asset_install_date']);
+                                $asset_mac = nullable_htmlentities($row['asset_mac']);
+                                $asset_status = nullable_htmlentities($row['asset_status']);
+                                $asset_purchase_date = nullable_htmlentities($row['asset_purchase_date']);
+                                $asset_warranty_expire = nullable_htmlentities($row['asset_warranty_expire']);
+                                $asset_install_date = nullable_htmlentities($row['asset_install_date']);
                                 if (empty($asset_install_date)) {
                                     $asset_install_date_display = "-";
                                 } else {
                                     $asset_install_date_display = $asset_install_date;
                                 }
-                                $asset_notes = htmlentities($row['asset_notes']);
-                                $asset_created_at = htmlentities($row['asset_created_at']);
+                                $asset_notes = nullable_htmlentities($row['asset_notes']);
+                                $asset_created_at = nullable_htmlentities($row['asset_created_at']);
                                 $asset_vendor_id = intval($row['asset_vendor_id']);
                                 $asset_location_id = intval($row['asset_location_id']);
                                 $asset_network_id = intval($row['asset_network_id']);
                                 $asset_contact_id = intval($row['asset_contact_id']);
 
                                 $login_id = $row['login_id'];
-                                $login_username = htmlentities(decryptLoginEntry($row['login_username']));
-                                $login_password = htmlentities(decryptLoginEntry($row['login_password']));
+                                $login_username = nullable_htmlentities(decryptLoginEntry($row['login_username']));
+                                $login_password = nullable_htmlentities(decryptLoginEntry($row['login_password']));
 
                                 $device_icon = getAssetIcon($asset_type);
 
@@ -286,28 +286,28 @@ if (isset($_GET['contact_id'])) {
 
                             while ($row = mysqli_fetch_array($sql_related_logins)) {
                                 $login_id = intval($row['login_id']);
-                                $login_name = htmlentities($row['login_name']);
-                                $login_uri = htmlentities($row['login_uri']);
+                                $login_name = nullable_htmlentities($row['login_name']);
+                                $login_uri = nullable_htmlentities($row['login_uri']);
                                 if (empty($login_uri)) {
                                     $login_uri_display = "-";
                                 } else {
                                     $login_uri_display = "$login_uri<button class='btn btn-sm clipboardjs' data-clipboard-text='$login_uri'><i class='far fa-copy text-secondary'></i></button><a href='https://$login_uri' target='_blank'><i class='fa fa-external-link-alt text-secondary'></i></a>";
                                 }
-                                $login_username = htmlentities(decryptLoginEntry($row['login_username']));
+                                $login_username = nullable_htmlentities(decryptLoginEntry($row['login_username']));
                                 if (empty($login_username)) {
                                     $login_username_display = "-";
                                 } else {
                                     $login_username_display = "$login_username<button class='btn btn-sm clipboardjs' data-clipboard-text='$login_username'><i class='far fa-copy text-secondary'></i></button>";
                                 }
-                                $login_password = htmlentities(decryptLoginEntry($row['login_password']));
-                                $login_otp_secret = htmlentities($row['login_otp_secret']);
+                                $login_password = nullable_htmlentities(decryptLoginEntry($row['login_password']));
+                                $login_otp_secret = nullable_htmlentities($row['login_otp_secret']);
                                 $login_id_with_secret = '"' . $row['login_id'] . '","' . $row['login_otp_secret'] . '"';
                                 if (empty($login_otp_secret)) {
                                     $otp_display = "-";
                                 } else {
                                     $otp_display = "<span onmouseenter='showOTP($login_id_with_secret)'><i class='far fa-clock'></i> <span id='otp_$login_id'><i>Hover..</i></span></span>";
                                 }
-                                $login_note = htmlentities($row['login_note']);
+                                $login_note = nullable_htmlentities($row['login_note']);
                                 $login_important = intval($row['login_important']);
                                 $login_contact_id = intval($row['login_contact_id']);
                                 $login_vendor_id = intval($row['login_vendor_id']);
@@ -386,22 +386,22 @@ if (isset($_GET['contact_id'])) {
 
                             while ($row = mysqli_fetch_array($sql_related_software)) {
                                 $software_id = intval($row['software_id']);
-                                $software_name = htmlentities($row['software_name']);
-                                $software_version = htmlentities($row['software_version']);
-                                $software_type = htmlentities($row['software_type']);
-                                $software_license_type = htmlentities($row['software_license_type']);
-                                $software_key = htmlentities($row['software_key']);
-                                $software_seats = htmlentities($row['software_seats']);
-                                $software_purchase = htmlentities($row['software_purchase']);
-                                $software_expire = htmlentities($row['software_expire']);
-                                $software_notes = htmlentities($row['software_notes']);
+                                $software_name = nullable_htmlentities($row['software_name']);
+                                $software_version = nullable_htmlentities($row['software_version']);
+                                $software_type = nullable_htmlentities($row['software_type']);
+                                $software_license_type = nullable_htmlentities($row['software_license_type']);
+                                $software_key = nullable_htmlentities($row['software_key']);
+                                $software_seats = nullable_htmlentities($row['software_seats']);
+                                $software_purchase = nullable_htmlentities($row['software_purchase']);
+                                $software_expire = nullable_htmlentities($row['software_expire']);
+                                $software_notes = nullable_htmlentities($row['software_notes']);
 
                                 $seat_count = 0;
 
                                 // Get Login
                                 $login_id = intval($row['login_id']);
-                                $login_username = htmlentities(decryptLoginEntry($row['login_username']));
-                                $login_password = htmlentities(decryptLoginEntry($row['login_password']));
+                                $login_username = nullable_htmlentities(decryptLoginEntry($row['login_username']));
+                                $login_password = nullable_htmlentities(decryptLoginEntry($row['login_password']));
 
                                 // Asset Licenses
                                 $asset_licenses_sql = mysqli_query($mysqli, "SELECT asset_id FROM software_assets WHERE software_id = $software_id");
@@ -483,13 +483,13 @@ if (isset($_GET['contact_id'])) {
 
                             while ($row = mysqli_fetch_array($sql_related_tickets)) {
                                 $ticket_id = intval($row['ticket_id']);
-                                $ticket_prefix = htmlentities($row['ticket_prefix']);
+                                $ticket_prefix = nullable_htmlentities($row['ticket_prefix']);
                                 $ticket_number = intval($row['ticket_number']);
-                                $ticket_subject = htmlentities($row['ticket_subject']);
-                                $ticket_priority = htmlentities($row['ticket_priority']);
-                                $ticket_status = htmlentities($row['ticket_status']);
-                                $ticket_created_at = htmlentities($row['ticket_created_at']);
-                                $ticket_updated_at = htmlentities($row['ticket_updated_at']);
+                                $ticket_subject = nullable_htmlentities($row['ticket_subject']);
+                                $ticket_priority = nullable_htmlentities($row['ticket_priority']);
+                                $ticket_status = nullable_htmlentities($row['ticket_status']);
+                                $ticket_created_at = nullable_htmlentities($row['ticket_created_at']);
+                                $ticket_updated_at = nullable_htmlentities($row['ticket_updated_at']);
                                 if (empty($ticket_updated_at)) {
                                     if ($ticket_status == "Closed") {
                                         $ticket_updated_at_display = "<p>Never</p>";
@@ -499,7 +499,7 @@ if (isset($_GET['contact_id'])) {
                                 } else {
                                     $ticket_updated_at_display = $ticket_updated_at;
                                 }
-                                $ticket_closed_at = htmlentities($row['ticket_closed_at']);
+                                $ticket_closed_at = nullable_htmlentities($row['ticket_closed_at']);
 
                                 if ($ticket_status == "Open") {
                                     $ticket_status_display = "<span class='p-2 badge badge-primary'>$ticket_status</span>";
@@ -526,7 +526,7 @@ if (isset($_GET['contact_id'])) {
                                         $ticket_assigned_to_display = "<p class='text-danger'>Not Assigned</p>";
                                     }
                                 } else {
-                                    $ticket_assigned_to_display = htmlentities($row['user_name']);
+                                    $ticket_assigned_to_display = nullable_htmlentities($row['user_name']);
                                 }
 
                                 ?>
diff --git a/client_contact_edit_modal.php b/client_contact_edit_modal.php
index 332ba949..86e799a5 100644
--- a/client_contact_edit_modal.php
+++ b/client_contact_edit_modal.php
@@ -125,7 +125,7 @@
                                         $sql_locations = mysqli_query($mysqli, "SELECT * FROM locations WHERE (location_archived_at > '$contact_created_at' OR location_archived_at IS NULL) AND location_client_id = $client_id ORDER BY location_name ASC");
                                         while ($row = mysqli_fetch_array($sql_locations)) {
                                             $location_id_select = intval($row['location_id']);
-                                            $location_name_select = htmlentities($row['location_name']);
+                                            $location_name_select = nullable_htmlentities($row['location_name']);
                                             ?>
                                             <option <?php if ($contact_location_id == $location_id_select) { echo "selected"; } ?> value="<?php echo $location_id_select; ?>"><?php echo $location_name_select; ?></option>
                                         <?php } ?>
diff --git a/client_contacts.php b/client_contacts.php
index 0d27e266..5c0833a7 100644
--- a/client_contacts.php
+++ b/client_contacts.php
@@ -43,7 +43,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     <div class="col-md-4">
                         <div class="input-group mb-3 mb-md-0">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Contacts">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Contacts">
                             <div class="input-group-append">
                                 <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                             </div>
@@ -78,14 +78,14 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $contact_id = intval($row['contact_id']);
-                        $contact_name = htmlentities($row['contact_name']);
-                        $contact_title = htmlentities($row['contact_title']);
+                        $contact_name = nullable_htmlentities($row['contact_name']);
+                        $contact_title = nullable_htmlentities($row['contact_title']);
                         if (empty($contact_title)) {
                             $contact_title_display = "-";
                         } else {
                             $contact_title_display = "<small class='text-secondary'>$contact_title</small>";
                         }
-                        $contact_department = htmlentities($row['contact_department']);
+                        $contact_department = nullable_htmlentities($row['contact_department']);
                         if (empty($contact_department)) {
                             $contact_department_display = "-";
                         } else {
@@ -97,39 +97,39 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                         } else {
                             $contact_phone_display = "$contact_phone";
                         }
-                        $contact_extension = htmlentities($row['contact_extension']);
+                        $contact_extension = nullable_htmlentities($row['contact_extension']);
                         $contact_mobile = formatPhoneNumber($row['contact_mobile']);
                         if (empty($contact_mobile)) {
                             $contact_mobile_display = "-";
                         } else {
                             $contact_mobile_display = "$contact_mobile";
                         }
-                        $contact_email = htmlentities($row['contact_email']);
+                        $contact_email = nullable_htmlentities($row['contact_email']);
                         if (empty($contact_email)) {
                             $contact_email_display = "-";
                         } else {
                             $contact_email_display = "<a href='mailto:$contact_email'>$contact_email</a><button class='btn btn-sm clipboardjs' data-clipboard-text='$contact_email'><i class='far fa-copy text-secondary'></i></button>";
                         }
-                        $contact_photo = htmlentities($row['contact_photo']);
+                        $contact_photo = nullable_htmlentities($row['contact_photo']);
                         $contact_initials = initials($contact_name);
-                        $contact_notes = htmlentities($row['contact_notes']);
+                        $contact_notes = nullable_htmlentities($row['contact_notes']);
                         $contact_important = intval($row['contact_important']);
                         $contact_billing = intval($row['contact_billing']);
                         $contact_technical = intval($row['contact_technical']);
-                        $contact_created_at = htmlentities($row['contact_created_at']);
+                        $contact_created_at = nullable_htmlentities($row['contact_created_at']);
                         if ($contact_id == $primary_contact) {
                             $primary_contact_display = "<small class='text-success'>Primary Contact</small>";
                         } else {
                             $primary_contact_display = false;
                         }
                         $contact_location_id = intval($row['contact_location_id']);
-                        $location_name = htmlentities($row['location_name']);
+                        $location_name = nullable_htmlentities($row['location_name']);
                         if (empty($location_name)) {
                             $location_name_display = "-";
                         } else {
                             $location_name_display = $location_name;
                         }
-                        $auth_method = htmlentities($row['contact_auth_method']);
+                        $auth_method = nullable_htmlentities($row['contact_auth_method']);
 
                         // Related Assets Query
                         $sql_related_assets = mysqli_query($mysqli, "SELECT * FROM assets WHERE asset_contact_id = $contact_id ORDER BY asset_id DESC");
diff --git a/client_document_add_from_template_modal.php b/client_document_add_from_template_modal.php
index bd07dbf3..a5084a1a 100644
--- a/client_document_add_from_template_modal.php
+++ b/client_document_add_from_template_modal.php
@@ -23,7 +23,7 @@
                 $sql_document_templates = mysqli_query($mysqli, "SELECT * FROM documents WHERE document_template = 1 AND document_archived_at IS NULL ORDER BY document_name ASC");
                 while ($row = mysqli_fetch_array($sql_document_templates)) {
                   $document_template_id = intval($row['document_id']);
-                  $document_template_name = htmlentities($row['document_name']);
+                  $document_template_name = nullable_htmlentities($row['document_name']);
 
                 ?>
                 <option value="<?php echo $document_template_id ?>"><?php echo $document_template_name; ?></option>
@@ -57,7 +57,7 @@
                 $sql_folders = mysqli_query($mysqli, "SELECT * FROM folders WHERE folder_client_id = $client_id ORDER BY folder_name ASC");
                 while ($row = mysqli_fetch_array($sql_folders)) {
                   $folder_id = intval($row['folder_id']);
-                  $folder_name = htmlentities($row['folder_name']);
+                  $folder_name = nullable_htmlentities($row['folder_name']);
 
                 ?>
                 <option <?php if (isset($_GET['folder_id']) && $_GET['folder_id'] == $folder_id) echo "selected"; ?> value="<?php echo $folder_id ?>"><?php echo $folder_name; ?></option>
diff --git a/client_document_add_modal.php b/client_document_add_modal.php
index b210e4c9..b634055e 100644
--- a/client_document_add_modal.php
+++ b/client_document_add_modal.php
@@ -30,7 +30,7 @@
                                 $sql_folders = mysqli_query($mysqli, "SELECT * FROM folders WHERE folder_client_id = $client_id ORDER BY folder_name ASC");
                                 while ($row = mysqli_fetch_array($sql_folders)) {
                                     $folder_id = intval($row['folder_id']);
-                                    $folder_name = htmlentities($row['folder_name']);
+                                    $folder_name = nullable_htmlentities($row['folder_name']);
 
                                     ?>
                                     <option <?php if (isset($_GET['folder_id']) && $_GET['folder_id'] == $folder_id) echo "selected"; ?> value="<?php echo $folder_id ?>"><?php echo $folder_name; ?></option>
diff --git a/client_document_details.php b/client_document_details.php
index d37fc951..1c0b7f6d 100644
--- a/client_document_details.php
+++ b/client_document_details.php
@@ -17,11 +17,11 @@ $sql_document = mysqli_query($mysqli, "SELECT * FROM documents LEFT JOIN folders
 
 $row = mysqli_fetch_array($sql_document);
 
-$folder_name = htmlentities($row['folder_name']);
-$document_name = htmlentities($row['document_name']);
+$folder_name = nullable_htmlentities($row['folder_name']);
+$document_name = nullable_htmlentities($row['document_name']);
 $document_content = $purifier->purify($row['document_content']);
-$document_created_at = htmlentities($row['document_created_at']);
-$document_updated_at = htmlentities($row['document_updated_at']);
+$document_created_at = nullable_htmlentities($row['document_created_at']);
+$document_updated_at = nullable_htmlentities($row['document_updated_at']);
 $document_folder_id = intval($row['document_folder_id']);
 
 ?>
diff --git a/client_document_edit_modal.php b/client_document_edit_modal.php
index 6b3ab3ef..43f5e29d 100644
--- a/client_document_edit_modal.php
+++ b/client_document_edit_modal.php
@@ -31,7 +31,7 @@
                                 $sql_folders_select = mysqli_query($mysqli, "SELECT * FROM folders WHERE folder_client_id = $client_id ORDER BY folder_name ASC");
                                 while ($row = mysqli_fetch_array($sql_folders_select)) {
                                     $folder_id_select = intval($row['folder_id']);
-                                    $folder_name_select = htmlentities($row['folder_name']);
+                                    $folder_name_select = nullable_htmlentities($row['folder_name']);
                                     ?>
                                     <option <?php if ($folder_id_select == $document_folder_id) echo "selected"; ?> value="<?php echo $folder_id_select ?>"><?php echo $folder_name_select; ?></option>
                                     <?php
diff --git a/client_document_template_details.php b/client_document_template_details.php
index cd4d3f55..3d6e1cfa 100644
--- a/client_document_template_details.php
+++ b/client_document_template_details.php
@@ -16,11 +16,11 @@ $sql_document = mysqli_query($mysqli, "SELECT * FROM documents WHERE document_te
 
 $row = mysqli_fetch_array($sql_document);
 
-$document_name = htmlentities($row['document_name']);
+$document_name = nullable_htmlentities($row['document_name']);
 $document_content = $purifier->purify($row['document_content']);
 //$document_content = $row['document_content'];
-$document_created_at = htmlentities($row['document_created_at']);
-$document_updated_at = htmlentities($row['document_updated_at']);
+$document_created_at = nullable_htmlentities($row['document_created_at']);
+$document_updated_at = nullable_htmlentities($row['document_updated_at']);
 
 ?>
 
diff --git a/client_document_templates.php b/client_document_templates.php
index dd048fd7..acfbce60 100644
--- a/client_document_templates.php
+++ b/client_document_templates.php
@@ -49,7 +49,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
     <form autocomplete="off">
       <input type="hidden" name="client_id" value="<?php echo $client_id; ?>">
       <div class="input-group">
-        <input type="search" class="form-control " name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search templates">
+        <input type="search" class="form-control " name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search templates">
         <div class="input-group-append">
           <button class="btn btn-secondary"><i class="fa fa-search"></i></button>
         </div>
@@ -80,10 +80,10 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
           while ($row = mysqli_fetch_array($sql)) {
             $document_id = intval($row['document_id']);
-            $document_name = htmlentities($row['document_name']);
-            $document_content = htmlentities($row['document_content']);
-            $document_created_at = htmlentities($row['document_created_at']);
-            $document_updated_at = htmlentities($row['document_updated_at']);
+            $document_name = nullable_htmlentities($row['document_name']);
+            $document_content = nullable_htmlentities($row['document_content']);
+            $document_created_at = nullable_htmlentities($row['document_created_at']);
+            $document_updated_at = nullable_htmlentities($row['document_updated_at']);
             $document_folder_id = intval($row['document_folder_id']);
 
           ?>
diff --git a/client_documents.php b/client_documents.php
index bab42bd9..7e3eaea3 100644
--- a/client_documents.php
+++ b/client_documents.php
@@ -85,7 +85,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                         $sql_folders = mysqli_query($mysqli, "SELECT * FROM folders WHERE folder_client_id = $client_id ORDER BY folder_name ASC");
                         while ($row = mysqli_fetch_array($sql_folders)) {
                             $folder_id = intval($row['folder_id']);
-                            $folder_name = htmlentities($row['folder_name']);
+                            $folder_name = nullable_htmlentities($row['folder_name']);
 
                             $row = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT COUNT('document_id') AS num FROM documents WHERE document_folder_id = $folder_id"));
                             $num_documents = intval($row['num']);
@@ -141,7 +141,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                         <input type="hidden" name="client_id" value="<?php echo $client_id; ?>">
                         <input type="hidden" name="folder_id" value="<?php echo $get_folder_id; ?>">
                         <div class="input-group">
-                            <input type="search" class="form-control " name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Documents">
+                            <input type="search" class="form-control " name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Documents">
                             <div class="input-group-append">
                                 <button class="btn btn-secondary"><i class="fa fa-search"></i></button>
                             </div>
@@ -172,10 +172,10 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                             while ($row = mysqli_fetch_array($sql)) {
                                 $document_id = intval($row['document_id']);
-                                $document_name = htmlentities($row['document_name']);
-                                $document_content = htmlentities($row['document_content']);
-                                $document_created_at = htmlentities($row['document_created_at']);
-                                $document_updated_at = htmlentities($row['document_updated_at']);
+                                $document_name = nullable_htmlentities($row['document_name']);
+                                $document_content = nullable_htmlentities($row['document_content']);
+                                $document_created_at = nullable_htmlentities($row['document_created_at']);
+                                $document_updated_at = nullable_htmlentities($row['document_updated_at']);
                                 $document_folder_id = intval($row['document_folder_id']);
 
                                 ?>
diff --git a/client_domain_add_modal.php b/client_domain_add_modal.php
index 329feb08..59824ece 100644
--- a/client_domain_add_modal.php
+++ b/client_domain_add_modal.php
@@ -34,7 +34,7 @@
                                 $sql = mysqli_query($mysqli, "SELECT * FROM vendors WHERE vendor_archived_at IS NULL AND vendor_client_id = $client_id ORDER BY vendor_name ASC");
                                 while ($row = mysqli_fetch_array($sql)) {
                                     $vendor_id = intval($row['vendor_id']);
-                                    $vendor_name = htmlentities($row['vendor_name']);
+                                    $vendor_name = nullable_htmlentities($row['vendor_name']);
                                     ?>
                                     <option value="<?php echo $vendor_id; ?>"><?php echo $vendor_name; ?></option>
                                 <?php } ?>
@@ -55,7 +55,7 @@
                                 $sql = mysqli_query($mysqli, "SELECT * FROM vendors WHERE vendor_archived_at IS NULL AND vendor_client_id = $client_id ORDER BY vendor_name ASC");
                                 while ($row = mysqli_fetch_array($sql)) {
                                     $vendor_id = intval($row['vendor_id']);
-                                    $vendor_name = htmlentities($row['vendor_name']);
+                                    $vendor_name = nullable_htmlentities($row['vendor_name']);
                                     ?>
                                     <option value="<?php echo $vendor_id; ?>"><?php echo $vendor_name; ?></option>
                                 <?php } ?>
diff --git a/client_domains.php b/client_domains.php
index 7d917bd8..5b524ae2 100644
--- a/client_domains.php
+++ b/client_domains.php
@@ -32,7 +32,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     <div class="col-md-4">
                         <div class="input-group mb-3 mb-md-0">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Domains">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Domains">
                             <div class="input-group-append">
                                 <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                             </div>
@@ -64,18 +64,18 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $domain_id = intval($row['domain_id']);
-                        $domain_name = htmlentities($row['domain_name']);
+                        $domain_name = nullable_htmlentities($row['domain_name']);
                         $domain_registrar = intval($row['domain_registrar']);
                         $domain_webhost = intval($row['domain_webhost']);
-                        $domain_expire = htmlentities($row['domain_expire']);
-                        $domain_registrar_name = htmlentities($row['vendor_name']);
+                        $domain_expire = nullable_htmlentities($row['domain_expire']);
+                        $domain_registrar_name = nullable_htmlentities($row['vendor_name']);
                         if (empty($domain_registrar_name)) {
                             $domain_registrar_name = "-";
                         }
 
                         $sql_domain_webhost = mysqli_query($mysqli, "SELECT vendor_name FROM vendors WHERE vendor_id = $domain_webhost");
                         $row = mysqli_fetch_array($sql_domain_webhost);
-                        $domain_webhost_name = htmlentities($row['vendor_name']);
+                        $domain_webhost_name = nullable_htmlentities($row['vendor_name']);
                         if (empty($domain_webhost_name)) {
                             $domain_webhost_name = "-";
                         }
diff --git a/client_edit_modal.php b/client_edit_modal.php
index caf8c56a..aebfc140 100644
--- a/client_edit_modal.php
+++ b/client_edit_modal.php
@@ -61,7 +61,7 @@
 
                                         $referral_sql = mysqli_query($mysqli, "SELECT * FROM categories WHERE category_type = 'Referral' AND (category_archived_at > '$client_created_at' OR category_archived_at IS NULL) ORDER BY category_name ASC");
                                         while ($row = mysqli_fetch_array($referral_sql)) {
-                                            $referral = htmlentities($row['category_name']);
+                                            $referral = nullable_htmlentities($row['category_name']);
                                             ?>
                                             <option <?php if ($client_referral == $referral) { echo "selected"; } ?> > <?php echo $referral; ?></option>
 
@@ -162,9 +162,9 @@
 
                                 while ($row = mysqli_fetch_array($sql_tags_select)) {
                                     $tag_id_select = intval($row['tag_id']);
-                                    $tag_name_select = htmlentities($row['tag_name']);
-                                    $tag_color_select = htmlentities($row['tag_color']);
-                                    $tag_icon_select = htmlentities($row['tag_icon']);
+                                    $tag_name_select = nullable_htmlentities($row['tag_name']);
+                                    $tag_color_select = nullable_htmlentities($row['tag_color']);
+                                    $tag_icon_select = nullable_htmlentities($row['tag_icon']);
 
                                     ?>
                                     <li class="list-group-item">
diff --git a/client_events.php b/client_events.php
index 6bef2adc..8a89924a 100644
--- a/client_events.php
+++ b/client_events.php
@@ -22,14 +22,14 @@ include("calendar_add_modal.php");
 $sql = mysqli_query($mysqli, "SELECT * FROM calendars LEFT JOIN events ON calendar_id = event_calendar_id WHERE event_client_id = $client_id");
 while ($row = mysqli_fetch_array($sql)) {
     $event_id = intval($row['event_id']);
-    $event_title = htmlentities($row['event_title']);
-    $event_description = htmlentities($row['event_description']);
-    $event_start = htmlentities($row['event_start']);
-    $event_end = htmlentities($row['event_end']);
-    $event_repeat = htmlentities($row['event_repeat']);
+    $event_title = nullable_htmlentities($row['event_title']);
+    $event_description = nullable_htmlentities($row['event_description']);
+    $event_start = nullable_htmlentities($row['event_start']);
+    $event_end = nullable_htmlentities($row['event_end']);
+    $event_repeat = nullable_htmlentities($row['event_repeat']);
     $calendar_id = intval($row['calendar_id']);
-    $calendar_name = htmlentities($row['calendar_name']);
-    $calendar_color = htmlentities($row['calendar_color']);
+    $calendar_name = nullable_htmlentities($row['calendar_name']);
+    $calendar_color = nullable_htmlentities($row['calendar_color']);
 
     require("calendar_event_edit_modal.php");
 
diff --git a/client_files.php b/client_files.php
index fa019b80..fdd0e5b2 100644
--- a/client_files.php
+++ b/client_files.php
@@ -30,9 +30,9 @@ $num_of_files = mysqli_num_rows($sql_files_images) + mysqli_num_rows($sql_files_
 
                 while ($row = mysqli_fetch_array($sql_files_images)) {
                     $file_id = intval($row['file_id']);
-                    $file_name = htmlentities($row['file_name']);
-                    $file_reference_name = htmlentities($row['file_reference_name']);
-                    $file_ext = htmlentities($row['file_ext']);
+                    $file_name = nullable_htmlentities($row['file_name']);
+                    $file_reference_name = nullable_htmlentities($row['file_reference_name']);
+                    $file_ext = nullable_htmlentities($row['file_ext']);
 
                     ?>
 
@@ -65,9 +65,9 @@ $num_of_files = mysqli_num_rows($sql_files_images) + mysqli_num_rows($sql_files_
                     <?php
                     while ($row = mysqli_fetch_array($sql_files_other)) {
                         $file_id = intval($row['file_id']);
-                        $file_name = htmlentities($row['file_name']);
-                        $file_reference_name = htmlentities($row['file_reference_name']);
-                        $file_ext = htmlentities($row['file_ext']);
+                        $file_name = nullable_htmlentities($row['file_name']);
+                        $file_reference_name = nullable_htmlentities($row['file_reference_name']);
+                        $file_ext = nullable_htmlentities($row['file_ext']);
                         if ($file_ext == 'pdf') {
                             $file_icon = "file-pdf";
                         } elseif ($file_ext == 'gz' || $file_ext == 'tar' || $file_ext == 'zip' || $file_ext == '7z' || $file_ext == 'rar') {
diff --git a/client_invoices.php b/client_invoices.php
index 44af1a15..713a3f25 100644
--- a/client_invoices.php
+++ b/client_invoices.php
@@ -36,7 +36,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     <div class="col-md-4">
                         <div class="input-group mb-3 mb-md-0">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Invoices">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Invoices">
                             <div class="input-group-append">
                                 <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                             </div>
@@ -71,22 +71,22 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $invoice_id = intval($row['invoice_id']);
-                        $invoice_prefix = htmlentities($row['invoice_prefix']);
-                        $invoice_number = htmlentities($row['invoice_number']);
-                        $invoice_scope = htmlentities($row['invoice_scope']);
+                        $invoice_prefix = nullable_htmlentities($row['invoice_prefix']);
+                        $invoice_number = nullable_htmlentities($row['invoice_number']);
+                        $invoice_scope = nullable_htmlentities($row['invoice_scope']);
                         if (empty($invoice_scope)) {
                             $invoice_scope_display = "-";
                         } else {
                             $invoice_scope_display = $invoice_scope;
                         }
-                        $invoice_status = htmlentities($row['invoice_status']);
-                        $invoice_date = htmlentities($row['invoice_date']);
-                        $invoice_due = htmlentities($row['invoice_due']);
+                        $invoice_status = nullable_htmlentities($row['invoice_status']);
+                        $invoice_date = nullable_htmlentities($row['invoice_date']);
+                        $invoice_due = nullable_htmlentities($row['invoice_due']);
                         $invoice_amount = floatval($row['invoice_amount']);
-                        $invoice_currency_code = htmlentities($row['invoice_currency_code']);
-                        $invoice_created_at = htmlentities($row['invoice_created_at']);
+                        $invoice_currency_code = nullable_htmlentities($row['invoice_currency_code']);
+                        $invoice_created_at = nullable_htmlentities($row['invoice_created_at']);
                         $category_id = intval($row['category_id']);
-                        $category_name = htmlentities($row['category_name']);
+                        $category_name = nullable_htmlentities($row['category_name']);
 
                         if (($invoice_status == "Sent" || $invoice_status == "Partial" || $invoice_status == "Viewed") && strtotime($invoice_due) < time()) {
                             $overdue_color = "text-danger font-weight-bold";
diff --git a/client_location_add_modal.php b/client_location_add_modal.php
index 40eaefe6..20cd893b 100644
--- a/client_location_add_modal.php
+++ b/client_location_add_modal.php
@@ -116,7 +116,7 @@
                                         $sql_contacts = mysqli_query($mysqli, "SELECT * FROM contacts WHERE contact_archived_at IS NULL AND contact_client_id = $client_id ORDER BY contact_name ASC");
                                         while ($row = mysqli_fetch_array($sql_contacts)) {
                                             $contact_id = $row['contact_id'];
-                                            $contact_name = htmlentities($row['contact_name']);
+                                            $contact_name = nullable_htmlentities($row['contact_name']);
                                             ?>
                                             <option value="<?php echo $contact_id; ?>"><?php echo $contact_name; ?></option>
                                         <?php } ?>
diff --git a/client_location_edit_modal.php b/client_location_edit_modal.php
index 7462c001..c919e5c6 100644
--- a/client_location_edit_modal.php
+++ b/client_location_edit_modal.php
@@ -118,7 +118,7 @@
                                         $sql_contacts = mysqli_query($mysqli, "SELECT * FROM contacts WHERE (contact_archived_at > '$location_created_at' OR contact_archived_at IS NULL) AND contact_client_id = $client_id ORDER BY contact_name ASC");
                                         while ($row = mysqli_fetch_array($sql_contacts)) {
                                             $contact_id_select = intval($row['contact_id']);
-                                            $contact_name_select = htmlentities($row['contact_name']);
+                                            $contact_name_select = nullable_htmlentities($row['contact_name']);
 
                                             ?>
                                             <option <?php if ($location_contact_id == $contact_id_select) { echo "selected"; } ?> value="<?php echo $contact_id_select; ?>"><?php echo $contact_name_select; ?></option>
diff --git a/client_locations.php b/client_locations.php
index bd386e65..da0046c5 100644
--- a/client_locations.php
+++ b/client_locations.php
@@ -36,7 +36,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 <div class="col-md-4">
                     <div class="input-group mb-3 mb-md-0">
-                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Locations">
+                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Locations">
                         <div class="input-group-append">
                             <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                         </div>
@@ -69,27 +69,27 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 while ($row = mysqli_fetch_array($sql)) {
                     $location_id = intval($row['location_id']);
-                    $location_name = htmlentities($row['location_name']);
-                    $location_country = htmlentities($row['location_country']);
-                    $location_address = htmlentities($row['location_address']);
-                    $location_city = htmlentities($row['location_city']);
-                    $location_state = htmlentities($row['location_state']);
-                    $location_zip = htmlentities($row['location_zip']);
+                    $location_name = nullable_htmlentities($row['location_name']);
+                    $location_country = nullable_htmlentities($row['location_country']);
+                    $location_address = nullable_htmlentities($row['location_address']);
+                    $location_city = nullable_htmlentities($row['location_city']);
+                    $location_state = nullable_htmlentities($row['location_state']);
+                    $location_zip = nullable_htmlentities($row['location_zip']);
                     $location_phone = formatPhoneNumber($row['location_phone']);
                     if (empty($location_phone)) {
                         $location_phone_display = "-";
                     } else {
                         $location_phone_display = $location_phone;
                     }
-                    $location_hours = htmlentities($row['location_hours']);
+                    $location_hours = nullable_htmlentities($row['location_hours']);
                     if (empty($location_hours)) {
                         $location_hours_display = "-";
                     } else {
                         $location_hours_display = $location_hours;
                     }
-                    $location_photo = htmlentities($row['location_photo']);
-                    $location_notes = htmlentities($row['location_notes']);
-                    $location_created_at = htmlentities($row['location_created_at']);
+                    $location_photo = nullable_htmlentities($row['location_photo']);
+                    $location_notes = nullable_htmlentities($row['location_notes']);
+                    $location_created_at = nullable_htmlentities($row['location_created_at']);
                     $location_contact_id = intval($row['location_contact_id']);
                     if ($location_id == $primary_location) {
                         $primary_location_display = "<p class='text-success'>Primary Location</p>";
diff --git a/client_login_add_modal.php b/client_login_add_modal.php
index dc571a73..36e47bf3 100644
--- a/client_login_add_modal.php
+++ b/client_login_add_modal.php
@@ -110,7 +110,7 @@
                                         $sql = mysqli_query($mysqli, "SELECT * FROM contacts WHERE contact_client_id = $client_id ORDER BY contact_name ASC");
                                         while ($row = mysqli_fetch_array($sql)) {
                                             $contact_id = intval($row['contact_id']);
-                                            $contact_name = htmlentities($row['contact_name']);
+                                            $contact_name = nullable_htmlentities($row['contact_name']);
                                             ?>
                                             <option value="<?php echo $contact_id; ?>"><?php echo $contact_name; ?></option>
 
@@ -134,7 +134,7 @@
                                         $sql_vendors = mysqli_query($mysqli, "SELECT * FROM vendors WHERE vendor_client_id = $client_id ORDER BY vendor_name ASC");
                                         while ($row = mysqli_fetch_array($sql_vendors)) {
                                             $vendor_id = intval($row['vendor_id']);
-                                            $vendor_name = htmlentities($row['vendor_name']);
+                                            $vendor_name = nullable_htmlentities($row['vendor_name']);
                                             ?>
                                             <option value="<?php echo $vendor_id; ?>"><?php echo $vendor_name; ?></option>
 
@@ -158,7 +158,7 @@
                                         $sql = mysqli_query($mysqli, "SELECT * FROM assets WHERE asset_client_id = $client_id ORDER BY asset_name ASC");
                                         while ($row = mysqli_fetch_array($sql)) {
                                             $asset_id = intval($row['asset_id']);
-                                            $asset_name = htmlentities($row['asset_name']);
+                                            $asset_name = nullable_htmlentities($row['asset_name']);
                                             ?>
                                             <option value="<?php echo $asset_id; ?>"><?php echo $asset_name; ?></option>
 
@@ -182,7 +182,7 @@
                                         $sql = mysqli_query($mysqli, "SELECT * FROM software WHERE software_client_id = $client_id ORDER BY software_name ASC");
                                         while ($row = mysqli_fetch_array($sql)) {
                                             $software_id = intval($row['software_id']);
-                                            $software_name = htmlentities($row['software_name']);
+                                            $software_name = nullable_htmlentities($row['software_name']);
                                             ?>
                                             <option value="<?php echo $software_id; ?>"><?php echo $software_name; ?></option>
 
diff --git a/client_login_edit_modal.php b/client_login_edit_modal.php
index 6f53206c..41aae5cb 100644
--- a/client_login_edit_modal.php
+++ b/client_login_edit_modal.php
@@ -118,7 +118,7 @@
                                         $sql_contacts = mysqli_query($mysqli, "SELECT * FROM contacts WHERE contact_client_id = $client_id ORDER BY contact_name ASC");
                                         while ($row = mysqli_fetch_array($sql_contacts)) {
                                             $contact_id_select = intval($row['contact_id']);
-                                            $contact_name_select = htmlentities($row['contact_name']);
+                                            $contact_name_select = nullable_htmlentities($row['contact_name']);
                                             ?>
                                             <option <?php if ($login_contact_id == $contact_id_select) { echo "selected"; } ?> value="<?php echo $contact_id_select; ?>"><?php echo $contact_name_select; ?></option>
                                         <?php } ?>
@@ -139,7 +139,7 @@
                                         $sql_vendors = mysqli_query($mysqli, "SELECT * FROM vendors WHERE vendor_client_id = $client_id ORDER BY vendor_name ASC");
                                         while ($row = mysqli_fetch_array($sql_vendors)) {
                                             $vendor_id_select = intval($row['vendor_id']);
-                                            $vendor_name_select = htmlentities($row['vendor_name']);
+                                            $vendor_name_select = nullable_htmlentities($row['vendor_name']);
                                             ?>
                                             <option <?php if ($login_vendor_id == $vendor_id_select) { echo "selected"; } ?> value="<?php echo $vendor_id_select; ?>"><?php echo $vendor_name_select; ?></option>
                                         <?php } ?>
@@ -161,7 +161,7 @@
                                         $sql_assets = mysqli_query($mysqli, "SELECT * FROM assets WHERE asset_client_id = $client_id ORDER BY asset_name ASC");
                                         while ($row = mysqli_fetch_array($sql_assets)) {
                                             $asset_id_select = intval($row['asset_id']);
-                                            $asset_name_select = htmlentities($row['asset_name']);
+                                            $asset_name_select = nullable_htmlentities($row['asset_name']);
                                             ?>
                                             <option <?php if ($login_asset_id == $asset_id_select) { echo "selected"; } ?> value="<?php echo $asset_id_select; ?>"><?php echo $asset_name_select; ?></option>
 
@@ -183,7 +183,7 @@
                                         $sql_software = mysqli_query($mysqli, "SELECT * FROM software WHERE software_client_id = $client_id ORDER BY software_name ASC");
                                         while ($row = mysqli_fetch_array($sql_software)) {
                                             $software_id_select = intval($row['software_id']);
-                                            $software_name_select = htmlentities($row['software_name']);
+                                            $software_name_select = nullable_htmlentities($row['software_name']);
                                             ?>
                                             <option <?php if ($login_software_id == $software_id_select) { echo "selected"; } ?> value="<?php echo $software_id_select; ?>"><?php echo $software_name_select; ?></option>
 
diff --git a/client_logins.php b/client_logins.php
index 90fab3ca..b4b3ac13 100644
--- a/client_logins.php
+++ b/client_logins.php
@@ -35,7 +35,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 <div class="col-md-4">
                     <div class="input-group mb-3 mb-md-0">
-                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Passwords">
+                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Passwords">
                         <div class="input-group-append">
                             <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                         </div>
@@ -69,28 +69,28 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 while ($row = mysqli_fetch_array($sql)) {
                     $login_id = intval($row['login_id']);
-                    $login_name = htmlentities($row['login_name']);
-                    $login_uri = htmlentities($row['login_uri']);
+                    $login_name = nullable_htmlentities($row['login_name']);
+                    $login_uri = nullable_htmlentities($row['login_uri']);
                     if (empty($login_uri)) {
                         $login_uri_display = "-";
                     } else {
                         $login_uri_display = "$login_uri<button class='btn btn-sm clipboardjs' data-clipboard-text='$login_uri'><i class='far fa-copy text-secondary'></i></button><a href='https://$login_uri' target='_blank'><i class='fa fa-external-link-alt text-secondary'></i></a>";
                     }
-                    $login_username = htmlentities(decryptLoginEntry($row['login_username']));
+                    $login_username = nullable_htmlentities(decryptLoginEntry($row['login_username']));
                     if (empty($login_username)) {
                         $login_username_display = "-";
                     } else {
                         $login_username_display = "$login_username<button class='btn btn-sm clipboardjs' data-clipboard-text='$login_username'><i class='far fa-copy text-secondary'></i></button>";
                     }
-                    $login_password = htmlentities(decryptLoginEntry($row['login_password']));
-                    $login_otp_secret = htmlentities($row['login_otp_secret']);
+                    $login_password = nullable_htmlentities(decryptLoginEntry($row['login_password']));
+                    $login_otp_secret = nullable_htmlentities($row['login_otp_secret']);
                     $login_id_with_secret = '"' . $row['login_id'] . '","' . $row['login_otp_secret'] . '"';
                     if (empty($login_otp_secret)) {
                         $otp_display = "-";
                     } else {
                         $otp_display = "<span onmouseenter='showOTP($login_id_with_secret)'><i class='far fa-clock'></i> <span id='otp_$login_id'><i>Hover..</i></span></span>";
                     }
-                    $login_note = htmlentities($row['login_note']);
+                    $login_note = nullable_htmlentities($row['login_note']);
                     $login_important = intval($row['login_important']);
                     $login_contact_id = intval($row['login_contact_id']);
                     $login_vendor_id = intval($row['login_vendor_id']);
diff --git a/client_logs.php b/client_logs.php
index 54b944b7..66f48508 100644
--- a/client_logs.php
+++ b/client_logs.php
@@ -34,7 +34,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 <div class="col-md-4">
                     <div class="input-group mb-3 mb-md-0">
-                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Logs">
+                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Logs">
                         <div class="input-group-append">
                             <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                         </div>
@@ -66,16 +66,16 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 while ($row = mysqli_fetch_array($sql)) {
                     $log_id = intval($row['log_id']);
-                    $log_type = htmlentities($row['log_type']);
-                    $log_action = htmlentities($row['log_action']);
-                    $log_description = htmlentities($row['log_description']);
-                    $log_ip = htmlentities($row['log_ip']);
-                    $log_user_agent = htmlentities($row['log_user_agent']);
+                    $log_type = nullable_htmlentities($row['log_type']);
+                    $log_action = nullable_htmlentities($row['log_action']);
+                    $log_description = nullable_htmlentities($row['log_description']);
+                    $log_ip = nullable_htmlentities($row['log_ip']);
+                    $log_user_agent = nullable_htmlentities($row['log_user_agent']);
                     $log_user_os = getOS($log_user_agent);
                     $log_user_browser = getWebBrowser($log_user_agent);
-                    $log_created_at = htmlentities($row['log_created_at']);
+                    $log_created_at = nullable_htmlentities($row['log_created_at']);
                     $user_id = intval($row['user_id']);
-                    $user_name = htmlentities($row['user_name']);
+                    $user_name = nullable_htmlentities($row['user_name']);
                     if (empty($user_name)) {
                         $user_name_display = "-";
                     } else {
diff --git a/client_network_add_modal.php b/client_network_add_modal.php
index a2bfeb38..3f55cad6 100644
--- a/client_network_add_modal.php
+++ b/client_network_add_modal.php
@@ -74,7 +74,7 @@
                 $sql = mysqli_query($mysqli, "SELECT * FROM locations WHERE location_archived_at IS NULL AND location_client_id = $client_id ORDER BY location_name ASC"); 
                 while ($row = mysqli_fetch_array($sql)) {
                   $location_id = intval($row['location_id']);
-                  $location_name = htmlentities($row['location_name']);
+                  $location_name = nullable_htmlentities($row['location_name']);
                 ?>
                 <option value="<?php echo $location_id; ?>"><?php echo $location_name; ?></option>
                 
diff --git a/client_networks.php b/client_networks.php
index 782387f3..3d546cdc 100644
--- a/client_networks.php
+++ b/client_networks.php
@@ -36,7 +36,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 <div class="col-md-4">
                     <div class="input-group mb-3 mb-md-0">
-                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Networks">
+                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Networks">
                         <div class="input-group-append">
                             <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                         </div>
@@ -70,23 +70,23 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 while ($row = mysqli_fetch_array($sql)) {
                     $network_id = intval($row['network_id']);
-                    $network_name = htmlentities($row['network_name']);
+                    $network_name = nullable_htmlentities($row['network_name']);
                     $network_vlan = intval($row['network_vlan']);
                     if (empty($network_vlan)) {
                         $network_vlan_display = "-";
                     } else {
                         $network_vlan_display = $network_vlan;
                     }
-                    $network = htmlentities($row['network']);
-                    $network_gateway = htmlentities($row['network_gateway']);
-                    $network_dhcp_range = htmlentities($row['network_dhcp_range']);
+                    $network = nullable_htmlentities($row['network']);
+                    $network_gateway = nullable_htmlentities($row['network_gateway']);
+                    $network_dhcp_range = nullable_htmlentities($row['network_dhcp_range']);
                     if (empty($network_dhcp_range)) {
                         $network_dhcp_range_display = "-";
                     } else {
                         $network_dhcp_range_display = $network_dhcp_range;
                     }
                     $network_location_id = intval($row['network_location_id']);
-                    $location_name = htmlentities($row['location_name']);
+                    $location_name = nullable_htmlentities($row['location_name']);
                     if (empty($location_name)) {
                         $location_name_display = "-";
                     } else {
diff --git a/client_overview.php b/client_overview.php
index 0cd443ad..30646314 100644
--- a/client_overview.php
+++ b/client_overview.php
@@ -61,11 +61,11 @@ $sql_domains_expiring = mysqli_query(
 
                         while ($row = mysqli_fetch_array($sql_important_contacts)) {
                             $contact_id = intval($row['contact_id']);
-                            $contact_name = htmlentities($row['contact_name']);
-                            $contact_title = htmlentities($row['contact_title']);
-                            $contact_email = htmlentities($row['contact_email']);
+                            $contact_name = nullable_htmlentities($row['contact_name']);
+                            $contact_title = nullable_htmlentities($row['contact_title']);
+                            $contact_email = nullable_htmlentities($row['contact_email']);
                             $contact_phone = formatPhoneNumber($row['contact_phone']);
-                            $contact_extension = htmlentities($row['contact_extension']);
+                            $contact_extension = nullable_htmlentities($row['contact_extension']);
                             $contact_mobile = formatPhoneNumber($row['contact_mobile']);
 
                             ?>
@@ -109,8 +109,8 @@ $sql_domains_expiring = mysqli_query(
 
                     while ($row = mysqli_fetch_array($sql_contacts)) {
                         $contact_id = intval($row['contact_id']);
-                        $contact_name = htmlentities($row['contact_name']);
-                        $contact_updated_at = htmlentities($row['contact_updated_at']);
+                        $contact_name = nullable_htmlentities($row['contact_name']);
+                        $contact_updated_at = nullable_htmlentities($row['contact_updated_at']);
 
                         ?>
                         <p class="mb-1">
@@ -125,8 +125,8 @@ $sql_domains_expiring = mysqli_query(
 
                     while ($row = mysqli_fetch_array($sql_vendors)) {
                         $vendor_id = intval($row['vendor_id']);
-                        $vendor_name = htmlentities($row['vendor_name']);
-                        $vendor_updated_at = htmlentities($row['vendor_updated_at']);
+                        $vendor_name = nullable_htmlentities($row['vendor_name']);
+                        $vendor_updated_at = nullable_htmlentities($row['vendor_updated_at']);
 
                         ?>
                         <p class="mb-1">
@@ -160,8 +160,8 @@ $sql_domains_expiring = mysqli_query(
 
                     while ($row = mysqli_fetch_array($sql_domains_expiring)) {
                         $domain_id = intval($row['domain_id']);
-                        $domain_name = htmlentities($row['domain_name']);
-                        $domain_expire = htmlentities($row['domain_expire']);
+                        $domain_name = nullable_htmlentities($row['domain_name']);
+                        $domain_expire = nullable_htmlentities($row['domain_expire']);
 
                         ?>
                         <p class="mb-1">
@@ -177,8 +177,8 @@ $sql_domains_expiring = mysqli_query(
 
                     while ($row = mysqli_fetch_array($sql_asset_warranties_expiring)) {
                         $asset_id = intval($row['asset_id']);
-                        $asset_name = htmlentities($row['asset_name']);
-                        $asset_warranty_expire = htmlentities($row['asset_warranty_expire']);
+                        $asset_name = nullable_htmlentities($row['asset_name']);
+                        $asset_warranty_expire = nullable_htmlentities($row['asset_warranty_expire']);
 
                         ?>
                         <p class="mb-1">
@@ -196,8 +196,8 @@ $sql_domains_expiring = mysqli_query(
 
                     while ($row = mysqli_fetch_array($sql_asset_retire)) {
                         $asset_id = intval($row['asset_id']);
-                        $asset_name = htmlentities($row['asset_name']);
-                        $asset_install_date = htmlentities($row['asset_install_date']);
+                        $asset_name = nullable_htmlentities($row['asset_name']);
+                        $asset_install_date = nullable_htmlentities($row['asset_install_date']);
 
                         ?>
                         <p class="mb-1">
@@ -234,10 +234,10 @@ $sql_domains_expiring = mysqli_query(
 
                         while ($row = mysqli_fetch_array($sql_tickets_stale)) {
                             $ticket_id = intval($row['ticket_id']);
-                            $ticket_prefix = htmlentities($row['ticket_prefix']);
+                            $ticket_prefix = nullable_htmlentities($row['ticket_prefix']);
                             $ticket_number = intval($row['ticket_number']);
-                            $ticket_subject = htmlentities($row['ticket_subject']);
-                            $ticket_created_at = htmlentities($row['ticket_created_at']);
+                            $ticket_subject = nullable_htmlentities($row['ticket_subject']);
+                            $ticket_created_at = nullable_htmlentities($row['ticket_created_at']);
 
                             ?>
                             <tr>
diff --git a/client_payments.php b/client_payments.php
index 5e3eab62..ceb9760f 100644
--- a/client_payments.php
+++ b/client_payments.php
@@ -34,7 +34,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 <div class="col-md-4">
                     <div class="input-group mb-3 mb-md-0">
-                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Payments">
+                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Payments">
                         <div class="input-group-append">
                             <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                         </div>
@@ -69,23 +69,23 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 while ($row = mysqli_fetch_array($sql)) {
                     $invoice_id = intval($row['invoice_id']);
-                    $invoice_prefix = htmlentities($row['invoice_prefix']);
+                    $invoice_prefix = nullable_htmlentities($row['invoice_prefix']);
                     $invoice_number = intval($row['invoice_number']);
-                    $invoice_status = htmlentities($row['invoice_status']);
+                    $invoice_status = nullable_htmlentities($row['invoice_status']);
                     $invoice_amount = floatval($row['invoice_amount']);
-                    $invoice_currency_code = htmlentities($row['invoice_currency_code']);
-                    $invoice_date = htmlentities($row['invoice_date']);
-                    $payment_date = htmlentities($row['payment_date']);
-                    $payment_method = htmlentities($row['payment_method']);
-                    $payment_reference = htmlentities($row['payment_reference']);
+                    $invoice_currency_code = nullable_htmlentities($row['invoice_currency_code']);
+                    $invoice_date = nullable_htmlentities($row['invoice_date']);
+                    $payment_date = nullable_htmlentities($row['payment_date']);
+                    $payment_method = nullable_htmlentities($row['payment_method']);
+                    $payment_reference = nullable_htmlentities($row['payment_reference']);
                     if (empty($payment_reference)) {
                         $payment_reference_display = "-";
                     } else {
                         $payment_reference_display = $payment_reference;
                     }
                     $payment_amount = floatval($row['payment_amount']);
-                    $payment_currency_code = htmlentities($row['payment_currency_code']);
-                    $account_name = htmlentities($row['account_name']);
+                    $payment_currency_code = nullable_htmlentities($row['payment_currency_code']);
+                    $account_name = nullable_htmlentities($row['account_name']);
 
 
                     ?>
diff --git a/client_quotes.php b/client_quotes.php
index d21685ec..2e3b5c27 100644
--- a/client_quotes.php
+++ b/client_quotes.php
@@ -36,7 +36,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     <div class="col-md-4">
                         <div class="input-group mb-3 mb-md-0">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Quotes">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Quotes">
                             <div class="input-group-append">
                                 <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                             </div>
@@ -70,21 +70,21 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $quote_id = intval($row['quote_id']);
-                        $quote_prefix = htmlentities($row['quote_prefix']);
-                        $quote_number = htmlentities($row['quote_number']);
-                        $quote_scope = htmlentities($row['quote_scope']);
+                        $quote_prefix = nullable_htmlentities($row['quote_prefix']);
+                        $quote_number = nullable_htmlentities($row['quote_number']);
+                        $quote_scope = nullable_htmlentities($row['quote_scope']);
                         if (empty($quote_scope)) {
                             $quote_scope_display = "-";
                         } else {
                             $quote_scope_display = $quote_scope;
                         }
-                        $quote_status = htmlentities($row['quote_status']);
-                        $quote_date = htmlentities($row['quote_date']);
+                        $quote_status = nullable_htmlentities($row['quote_status']);
+                        $quote_date = nullable_htmlentities($row['quote_date']);
                         $quote_amount = floatval($row['quote_amount']);
-                        $quote_currency_code = htmlentities($row['quote_currency_code']);
-                        $quote_created_at = htmlentities($row['quote_created_at']);
+                        $quote_currency_code = nullable_htmlentities($row['quote_currency_code']);
+                        $quote_created_at = nullable_htmlentities($row['quote_created_at']);
                         $category_id = intval($row['category_id']);
-                        $category_name = htmlentities($row['category_name']);
+                        $category_name = nullable_htmlentities($row['category_name']);
 
                         //Set Badge color based off of quote status
                         if ($quote_status == "Sent") {
diff --git a/client_recurring_invoices.php b/client_recurring_invoices.php
index 45650a8d..399ec595 100644
--- a/client_recurring_invoices.php
+++ b/client_recurring_invoices.php
@@ -35,7 +35,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 <div class="col-md-4">
                     <div class="input-group mb-3 mb-md-0">
-                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Recurring Invoices">
+                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Recurring Invoices">
                         <div class="input-group-append">
                             <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                         </div>
@@ -71,21 +71,21 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 while ($row = mysqli_fetch_array($sql)) {
                     $recurring_id = intval($row['recurring_id']);
-                    $recurring_prefix = htmlentities($row['recurring_prefix']);
+                    $recurring_prefix = nullable_htmlentities($row['recurring_prefix']);
                     $recurring_number = intval($row['recurring_number']);
-                    $recurring_scope = htmlentities($row['recurring_scope']);
-                    $recurring_frequency = htmlentities($row['recurring_frequency']);
-                    $recurring_status = htmlentities($row['recurring_status']);
-                    $recurring_last_sent = htmlentities($row['recurring_last_sent']);
+                    $recurring_scope = nullable_htmlentities($row['recurring_scope']);
+                    $recurring_frequency = nullable_htmlentities($row['recurring_frequency']);
+                    $recurring_status = nullable_htmlentities($row['recurring_status']);
+                    $recurring_last_sent = nullable_htmlentities($row['recurring_last_sent']);
                     if ($recurring_last_sent == 0) {
                         $recurring_last_sent = "-";
                     }
-                    $recurring_next_date = htmlentities($row['recurring_next_date']);
+                    $recurring_next_date = nullable_htmlentities($row['recurring_next_date']);
                     $recurring_amount = floatval($row['recurring_amount']);
-                    $recurring_currency_code = htmlentities($row['recurring_currency_code']);
-                    $recurring_created_at = htmlentities($row['recurring_created_at']);
+                    $recurring_currency_code = nullable_htmlentities($row['recurring_currency_code']);
+                    $recurring_created_at = nullable_htmlentities($row['recurring_created_at']);
                     $category_id = intval($row['category_id']);
-                    $category_name = htmlentities($row['category_name']);
+                    $category_name = nullable_htmlentities($row['category_name']);
                     if ($recurring_status == 1) {
                         $status = "Active";
                         $status_badge_color = "success";
diff --git a/client_scheduled_tickets.php b/client_scheduled_tickets.php
index 2e8c7dd8..22bd0b22 100644
--- a/client_scheduled_tickets.php
+++ b/client_scheduled_tickets.php
@@ -41,7 +41,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 <div class="col-md-4">
                     <div class="input-group mb-3 mb-md-0">
-                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Scheduled Tickets">
+                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Scheduled Tickets">
                         <div class="input-group-append">
                             <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                         </div>
@@ -75,10 +75,10 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $scheduled_ticket_id = intval($row['scheduled_ticket_id']);
-                        $scheduled_ticket_subject = htmlentities($row['scheduled_ticket_subject']);
-                        $scheduled_ticket_priority = htmlentities($row['scheduled_ticket_priority']);
-                        $scheduled_ticket_frequency = htmlentities($row['scheduled_ticket_frequency']);
-                        $scheduled_ticket_next_run = htmlentities($row['scheduled_ticket_next_run']);
+                        $scheduled_ticket_subject = nullable_htmlentities($row['scheduled_ticket_subject']);
+                        $scheduled_ticket_priority = nullable_htmlentities($row['scheduled_ticket_priority']);
+                        $scheduled_ticket_frequency = nullable_htmlentities($row['scheduled_ticket_frequency']);
+                        $scheduled_ticket_next_run = nullable_htmlentities($row['scheduled_ticket_next_run']);
                         ?>
 
                         <tr>
diff --git a/client_service_add_modal.php b/client_service_add_modal.php
index 118286d2..7d91cf4d 100644
--- a/client_service_add_modal.php
+++ b/client_service_add_modal.php
@@ -102,7 +102,7 @@
                   $sql = mysqli_query($mysqli, "SELECT * FROM contacts WHERE contact_client_id = '$client_id'");
                   while ($row = mysqli_fetch_array($sql)) {
                     $contact_id = intval($row['contact_id']);
-                    $contact_name = htmlentities($row['contact_name']);
+                    $contact_name = nullable_htmlentities($row['contact_name']);
                     echo "<option value=\"$contact_id\">$contact_name</option>";
                   }
                   ?>
@@ -116,7 +116,7 @@
                   $sql = mysqli_query($mysqli, "SELECT * FROM vendors WHERE vendor_template = 0 AND vendor_client_id = '$client_id'");
                   while ($row = mysqli_fetch_array($sql)) {
                     $vendor_id = intval($row['vendor_id']);
-                    $vendor_name = htmlentities($row['vendor_name']);
+                    $vendor_name = nullable_htmlentities($row['vendor_name']);
                     echo "<option value=\"$vendor_id\">$vendor_name</option>";
                   }
                   ?>
@@ -130,7 +130,7 @@
                   $sql = mysqli_query($mysqli, "SELECT * FROM documents WHERE document_client_id = '$client_id'");
                   while ($row = mysqli_fetch_array($sql)) {
                     $document_id = intval($row['document_id']);
-                    $document_name = htmlentities($row['document_name']);
+                    $document_name = nullable_htmlentities($row['document_name']);
                     echo "<option value=\"$document_id\">$document_name</option>";
                   }
                   ?>
@@ -154,7 +154,7 @@
                       $sql = mysqli_query($mysqli, "SELECT * FROM assets WHERE asset_client_id = '$client_id'");
                       while ($row = mysqli_fetch_array($sql)) {
                         $asset_id = intval($row['asset_id']);
-                        $asset_name = htmlentities($row['asset_name']);
+                        $asset_name = nullable_htmlentities($row['asset_name']);
                         echo "<option value=\"$asset_id\">$asset_name</option>";
                       }
                       ?>
@@ -170,7 +170,7 @@
                       $sql = mysqli_query($mysqli, "SELECT * FROM logins WHERE login_client_id = '$client_id'");
                       while ($row = mysqli_fetch_array($sql)) {
                         $login_id = intval($row['login_id']);
-                        $login_name = htmlentities($row['login_name']);
+                        $login_name = nullable_htmlentities($row['login_name']);
                         echo "<option value=\"$login_id\">$login_name</option>";
                       }
                       ?>
@@ -191,7 +191,7 @@
                       $sql = mysqli_query($mysqli, "SELECT * FROM domains WHERE domain_client_id = '$client_id'");
                       while ($row = mysqli_fetch_array($sql)) {
                         $domain_id = intval($row['domain_id']);
-                        $domain_name = htmlentities($row['domain_name']);
+                        $domain_name = nullable_htmlentities($row['domain_name']);
                         echo "<option value=\"$domain_id\">$domain_name</option>";
                       }
                       ?>
@@ -207,8 +207,8 @@
                       $sql = mysqli_query($mysqli, "SELECT * FROM certificates WHERE certificate_client_id = '$client_id'");
                       while ($row = mysqli_fetch_array($sql)) {
                         $cert_id = intval($row['certificate_id']);
-                        $cert_name = htmlentities($row['certificate_name']);
-                        $cert_domain = htmlentities($row['certificate_domain']);
+                        $cert_name = nullable_htmlentities($row['certificate_name']);
+                        $cert_domain = nullable_htmlentities($row['certificate_domain']);
                         echo "<option value=\"$cert_id\">$cert_name ($cert_domain)</option>";
                       }
                       ?>
diff --git a/client_service_edit_modal.php b/client_service_edit_modal.php
index 8a2b76ed..e7e18847 100644
--- a/client_service_edit_modal.php
+++ b/client_service_edit_modal.php
@@ -109,7 +109,7 @@
 
                   while ($row_all = mysqli_fetch_array($sql_all)) {
                     $contact_id = intval($row_all['contact_id']);
-                    $contact_name = htmlentities($row_all['contact_name']);
+                    $contact_name = nullable_htmlentities($row_all['contact_name']);
 
                     if (in_array($contact_id, $selected_ids)) {
                       echo "<option value=\"$contact_id\" selected>$contact_name</option>";
@@ -131,7 +131,7 @@
                   $sql_all = mysqli_query($mysqli, "SELECT * FROM vendors WHERE vendor_template = 0 AND vendor_client_id = '$client_id'");
                   while ($row_all = mysqli_fetch_array($sql_all)) {
                     $vendor_id = intval($row_all['vendor_id']);
-                    $vendor_name = htmlentities($row_all['vendor_name']);
+                    $vendor_name = nullable_htmlentities($row_all['vendor_name']);
 
                     if (in_array($vendor_id, $selected_ids)) {
                       echo "<option value=\"$vendor_id\" selected>$vendor_name</option>";
@@ -153,7 +153,7 @@
                   $sql_all = mysqli_query($mysqli, "SELECT * FROM documents WHERE document_client_id = '$client_id'");
                   while ($row_all = mysqli_fetch_array($sql_all)) {
                     $document_id = intval($row_all['document_id']);
-                    $document_name = htmlentities($row_all['document_name']);
+                    $document_name = nullable_htmlentities($row_all['document_name']);
 
                     if (in_array($document_id, $selected_ids)) {
                       echo "<option value=\"$document_id\" selected>$document_name</option>";
@@ -186,7 +186,7 @@
                       $sql_all = mysqli_query($mysqli, "SELECT * FROM assets WHERE asset_client_id = '$client_id'");
                       while ($row_all = mysqli_fetch_array($sql_all)) {
                         $asset_id = intval($row_all['asset_id']);
-                        $asset_name = htmlentities($row_all['asset_name']);
+                        $asset_name = nullable_htmlentities($row_all['asset_name']);
 
                         if (in_array($asset_id, $selected_ids)) {
                           echo "<option value=\"$asset_id\" selected>$asset_name</option>";
@@ -210,7 +210,7 @@
                       $sql_all = mysqli_query($mysqli, "SELECT * FROM logins WHERE login_client_id = '$client_id'");
                       while ($row_all = mysqli_fetch_array($sql_all)) {
                         $login_id = intval($row_all['login_id']);
-                        $login_name = htmlentities($row_all['login_name']);
+                        $login_name = nullable_htmlentities($row_all['login_name']);
 
                         if (in_array($login_id, $selected_ids)) {
                           echo "<option value=\"$login_id\" selected>$login_name</option>";
@@ -239,7 +239,7 @@
                       $sql_all = mysqli_query($mysqli, "SELECT * FROM domains WHERE domain_client_id = '$client_id'");
                       while ($row_all = mysqli_fetch_array($sql_all)) {
                         $domain_id = intval($row_all['domain_id']);
-                        $domain_name = htmlentities($row_all['domain_name']);
+                        $domain_name = nullable_htmlentities($row_all['domain_name']);
 
                         if (in_array($domain_id, $selected_ids)) {
                           echo "<option value=\"$domain_id\" selected>$domain_name</option>";
@@ -263,7 +263,7 @@
                       $sql_all = mysqli_query($mysqli, "SELECT * FROM certificates WHERE certificate_client_id = '$client_id'");
                       while ($row_all = mysqli_fetch_array($sql_all)) {
                         $cert_id = intval($row_all['certificate_id']);
-                        $cert_name = htmlentities($row_all['certificate_name']);
+                        $cert_name = nullable_htmlentities($row_all['certificate_name']);
 
                         if (in_array($cert_id, $selected_ids)) {
                           echo "<option value=\"$cert_id\" selected>$cert_name</option>";
diff --git a/client_service_view_modal.php b/client_service_view_modal.php
index bedb5536..18912a7c 100644
--- a/client_service_view_modal.php
+++ b/client_service_view_modal.php
@@ -32,7 +32,7 @@
 
                                     while ($row = mysqli_fetch_array($sql_assets)) {
                                         if (!empty($row['asset_ip'])) {
-                                            $ip = '('.htmlentities($row["asset_ip"]).')';
+                                            $ip = '('.nullable_htmlentities($row["asset_ip"]).')';
                                         } else {
                                             $ip = '';
                                         }
@@ -56,7 +56,7 @@
                                 // Get networks linked to assets - push name to array
                                 while ($row = mysqli_fetch_array($sql_assets)) {
                                     if (!empty($row['network_name'])) {
-                                        $network_data = htmlentities("$row[network_name]:$row[network_vlan]");
+                                        $network_data = nullable_htmlentities("$row[network_name]:$row[network_vlan]");
                                         array_push($networks, $network_data);
                                     }
                                 }
diff --git a/client_services.php b/client_services.php
index 4eaed93e..4ad61ac1 100644
--- a/client_services.php
+++ b/client_services.php
@@ -34,7 +34,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
             <form autocomplete="off">
                 <input type="hidden" name="client_id" value="<?php echo $client_id; ?>">
                 <div class="input-group">
-                    <input type="search" class="form-control " name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Services">
+                    <input type="search" class="form-control " name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Services">
                     <div class="input-group-append">
                         <button class="btn btn-secondary"><i class="fa fa-search"></i></button>
                     </div>
@@ -58,14 +58,14 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $service_id = intval($row['service_id']);
-                        $service_name = htmlentities($row['service_name']);
-                        $service_description = htmlentities($row['service_description']);
-                        $service_category = htmlentities($row['service_category']);
-                        $service_importance = htmlentities($row['service_importance']);
-                        $service_backup = htmlentities($row['service_backup']);
-                        $service_notes = htmlentities($row['service_notes']);
-                        $service_updated_at = htmlentities($row['service_updated_at']);
-                        $service_review_due = htmlentities($row['service_review_due']);
+                        $service_name = nullable_htmlentities($row['service_name']);
+                        $service_description = nullable_htmlentities($row['service_description']);
+                        $service_category = nullable_htmlentities($row['service_category']);
+                        $service_importance = nullable_htmlentities($row['service_importance']);
+                        $service_backup = nullable_htmlentities($row['service_backup']);
+                        $service_notes = nullable_htmlentities($row['service_notes']);
+                        $service_updated_at = nullable_htmlentities($row['service_updated_at']);
+                        $service_review_due = nullable_htmlentities($row['service_review_due']);
 
                         // Service Importance
                         if ($service_importance == "High") {
diff --git a/client_shared_items.php b/client_shared_items.php
index 13fff759..888166cc 100644
--- a/client_shared_items.php
+++ b/client_shared_items.php
@@ -34,7 +34,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     <div class="col-md-4">
                         <div class="input-group mb-3 mb-md-0">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Shared Items">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Shared Items">
                             <div class="input-group-append">
                                 <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                             </div>
@@ -61,28 +61,28 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $item_id = intval($row['item_id']);
-                        $item_active = htmlentities($row['item_active']);
-                        $item_key = htmlentities($row['item_key']);
-                        $item_type = htmlentities($row['item_type']);
+                        $item_active = nullable_htmlentities($row['item_active']);
+                        $item_key = nullable_htmlentities($row['item_key']);
+                        $item_type = nullable_htmlentities($row['item_type']);
                         $item_related_id = intval($row['item_related_id']);
-                        $item_note = htmlentities($row['item_note']);
-                        $item_views = htmlentities($row['item_views']);
-                        $item_view_limit = htmlentities($row['item_view_limit']);
-                        $item_created_at = htmlentities($row['item_created_at']);
-                        $item_expire_at = htmlentities($row['item_expire_at']);
+                        $item_note = nullable_htmlentities($row['item_note']);
+                        $item_views = nullable_htmlentities($row['item_views']);
+                        $item_view_limit = nullable_htmlentities($row['item_view_limit']);
+                        $item_created_at = nullable_htmlentities($row['item_created_at']);
+                        $item_expire_at = nullable_htmlentities($row['item_expire_at']);
 
                         if ($item_type == 'Login') {
                             $share_item_sql = mysqli_query($mysqli, "SELECT login_name FROM logins WHERE login_id = '$item_related_id' AND login_client_id = '$client_id'");
                             $share_item = mysqli_fetch_array($share_item_sql);
-                            $item_name = htmlentities($share_item['login_name']);
+                            $item_name = nullable_htmlentities($share_item['login_name']);
                         } elseif ($item_type == 'Document') {
                             $share_item_sql = mysqli_query($mysqli, "SELECT document_name FROM documents WHERE document_id = '$item_related_id' AND document_client_id = '$client_id'");
                             $share_item = mysqli_fetch_array($share_item_sql);
-                            $item_name = htmlentities($share_item['document_name']);
+                            $item_name = nullable_htmlentities($share_item['document_name']);
                         } elseif ($item_type == 'File') {
                             $share_item_sql = mysqli_query($mysqli, "SELECT file_name FROM files WHERE file_id = '$item_related_id' AND file_client_id = '$client_id'");
                             $share_item = mysqli_fetch_array($share_item_sql);
-                            $item_name = htmlentities($share_item['file_name']);
+                            $item_name = nullable_htmlentities($share_item['file_name']);
                         }
 
 
diff --git a/client_side_nav.php b/client_side_nav.php
index 9ae8c018..c876664f 100644
--- a/client_side_nav.php
+++ b/client_side_nav.php
@@ -1,5 +1,5 @@
 <!-- Main Sidebar Container -->
-<aside class="main-sidebar sidebar-dark-<?php echo htmlentities($config_theme); ?> d-print-none">
+<aside class="main-sidebar sidebar-dark-<?php echo nullable_htmlentities($config_theme); ?> d-print-none">
 
     <!-- Sidebar -->
     <div class="sidebar">
diff --git a/client_software.php b/client_software.php
index 23444de4..fb3d8644 100644
--- a/client_software.php
+++ b/client_software.php
@@ -44,7 +44,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     <div class="col-md-4">
                         <div class="input-group mb-3 mb-md-0">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Licenses">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Licenses">
                             <div class="input-group-append">
                                 <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                             </div>
@@ -77,20 +77,20 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $software_id = intval($row['software_id']);
-                        $software_name = htmlentities($row['software_name']);
-                        $software_version = htmlentities($row['software_version']);
-                        $software_type = htmlentities($row['software_type']);
-                        $software_license_type = htmlentities($row['software_license_type']);
-                        $software_key = htmlentities($row['software_key']);
-                        $software_seats = htmlentities($row['software_seats']);
-                        $software_purchase = htmlentities($row['software_purchase']);
-                        $software_expire = htmlentities($row['software_expire']);
-                        $software_notes = htmlentities($row['software_notes']);
+                        $software_name = nullable_htmlentities($row['software_name']);
+                        $software_version = nullable_htmlentities($row['software_version']);
+                        $software_type = nullable_htmlentities($row['software_type']);
+                        $software_license_type = nullable_htmlentities($row['software_license_type']);
+                        $software_key = nullable_htmlentities($row['software_key']);
+                        $software_seats = nullable_htmlentities($row['software_seats']);
+                        $software_purchase = nullable_htmlentities($row['software_purchase']);
+                        $software_expire = nullable_htmlentities($row['software_expire']);
+                        $software_notes = nullable_htmlentities($row['software_notes']);
 
                         // Get Login
                         $login_id = intval($row['login_id']);
-                        $login_username = htmlentities(decryptLoginEntry($row['login_username']));
-                        $login_password = htmlentities(decryptLoginEntry($row['login_password']));
+                        $login_username = nullable_htmlentities(decryptLoginEntry($row['login_username']));
+                        $login_password = nullable_htmlentities(decryptLoginEntry($row['login_password']));
 
                         $seat_count = 0;
 
diff --git a/client_software_add_from_template_modal.php b/client_software_add_from_template_modal.php
index 49d95831..45ec2e1e 100644
--- a/client_software_add_from_template_modal.php
+++ b/client_software_add_from_template_modal.php
@@ -23,7 +23,7 @@
                                 $sql_software_templates = mysqli_query($mysqli, "SELECT * FROM software WHERE software_template = 1 AND software_archived_at IS NULL ORDER BY software_name ASC");
                                 while($row = mysqli_fetch_array($sql_software_templates)){
                                     $software_template_id = intval($row['software_id']);
-                                    $software_template_name = htmlentities($row['software_name']);
+                                    $software_template_name = nullable_htmlentities($row['software_name']);
 
                                     ?>
                                     <option value="<?php echo $software_template_id ?>"><?php echo $software_template_name; ?></option>
diff --git a/client_software_add_modal.php b/client_software_add_modal.php
index bcaf5d61..cc239d2c 100644
--- a/client_software_add_modal.php
+++ b/client_software_add_modal.php
@@ -140,9 +140,9 @@
 
                                 while ($row = mysqli_fetch_array($sql)) {
                                     $asset_id = intval($row['asset_id']);
-                                    $asset_name = htmlentities($row['asset_name']);
-                                    $asset_type = htmlentities($row['asset_type']);
-                                    $contact_name = htmlentities($row['contact_name']);
+                                    $asset_name = nullable_htmlentities($row['asset_name']);
+                                    $asset_type = nullable_htmlentities($row['asset_type']);
+                                    $contact_name = nullable_htmlentities($row['contact_name']);
 
                                     ?>
                                     <li class="list-group-item">
@@ -171,8 +171,8 @@
 
                                 while ($row = mysqli_fetch_array($sql)) {
                                     $contact_id = intval($row['contact_id']);
-                                    $contact_name = htmlentities($row['contact_name']);
-                                    $contact_email = htmlentities($row['contact_email']);
+                                    $contact_name = nullable_htmlentities($row['contact_name']);
+                                    $contact_email = nullable_htmlentities($row['contact_email']);
 
                                     ?>
                                     <li class="list-group-item">
diff --git a/client_software_edit_modal.php b/client_software_edit_modal.php
index 009ee50b..5e462957 100644
--- a/client_software_edit_modal.php
+++ b/client_software_edit_modal.php
@@ -141,9 +141,9 @@
 
                                 while ($row = mysqli_fetch_array($sql_assets_select)) {
                                     $asset_id_select = intval($row['asset_id']);
-                                    $asset_name_select = htmlentities($row['asset_name']);
-                                    $asset_type_select = htmlentities($row['asset_type']);
-                                    $contact_name_select = htmlentities($row['contact_name']);
+                                    $asset_name_select = nullable_htmlentities($row['asset_name']);
+                                    $asset_type_select = nullable_htmlentities($row['asset_type']);
+                                    $contact_name_select = nullable_htmlentities($row['contact_name']);
 
                                     ?>
                                     <li class="list-group-item">
@@ -172,8 +172,8 @@
 
                                 while ($row = mysqli_fetch_array($sql_contacts_select)) {
                                     $contact_id_select = intval($row['contact_id']);
-                                    $contact_name_select = htmlentities($row['contact_name']);
-                                    $contact_email_select = htmlentities($row['contact_email']);
+                                    $contact_name_select = nullable_htmlentities($row['contact_name']);
+                                    $contact_email_select = nullable_htmlentities($row['contact_email']);
 
                                     ?>
                                     <li class="list-group-item">
diff --git a/client_tickets.php b/client_tickets.php
index 91356d37..35bda617 100644
--- a/client_tickets.php
+++ b/client_tickets.php
@@ -42,7 +42,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 <div class="col-md-4">
                     <div class="input-group mb-3 mb-md-0">
-                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Tickets">
+                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Tickets">
                         <div class="input-group-append">
                             <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                         </div>
@@ -79,14 +79,14 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 while ($row = mysqli_fetch_array($sql)) {
                     $ticket_id = intval($row['ticket_id']);
-                    $ticket_prefix = htmlentities($row['ticket_prefix']);
-                    $ticket_number = htmlentities($row['ticket_number']);
-                    $ticket_subject = htmlentities($row['ticket_subject']);
-                    $ticket_details = htmlentities($row['ticket_details']);
-                    $ticket_priority = htmlentities($row['ticket_priority']);
-                    $ticket_status = htmlentities($row['ticket_status']);
-                    $ticket_created_at = htmlentities($row['ticket_created_at']);
-                    $ticket_updated_at = htmlentities($row['ticket_updated_at']);
+                    $ticket_prefix = nullable_htmlentities($row['ticket_prefix']);
+                    $ticket_number = nullable_htmlentities($row['ticket_number']);
+                    $ticket_subject = nullable_htmlentities($row['ticket_subject']);
+                    $ticket_details = nullable_htmlentities($row['ticket_details']);
+                    $ticket_priority = nullable_htmlentities($row['ticket_priority']);
+                    $ticket_status = nullable_htmlentities($row['ticket_status']);
+                    $ticket_created_at = nullable_htmlentities($row['ticket_created_at']);
+                    $ticket_updated_at = nullable_htmlentities($row['ticket_updated_at']);
                     if (empty($ticket_updated_at)) {
                         if ($ticket_status == "Closed") {
                             $ticket_updated_at_display = "<p>Never</p>";
@@ -96,7 +96,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                     } else {
                         $ticket_updated_at_display = $ticket_updated_at;
                     }
-                    $ticket_closed_at = htmlentities($row['ticket_closed_at']);
+                    $ticket_closed_at = nullable_htmlentities($row['ticket_closed_at']);
 
                     if ($ticket_status == "Open") {
                         $ticket_status_display = "<span class='p-2 badge badge-primary'>$ticket_status</span>";
@@ -123,19 +123,19 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                             $ticket_assigned_to_display = "<p class='text-danger'>Not Assigned</p>";
                         }
                     } else {
-                        $ticket_assigned_to_display = htmlentities($row['user_name']);
+                        $ticket_assigned_to_display = nullable_htmlentities($row['user_name']);
                     }
                     $contact_id = intval($row['contact_id']);
-                    $contact_name = htmlentities($row['contact_name']);
+                    $contact_name = nullable_htmlentities($row['contact_name']);
                     if (empty($contact_name)) {
                         $contact_display = "-";
                     } else {
                         $contact_display = "$contact_name<br><small class='text-secondary'>$contact_email</small>";
                     }
-                    $contact_title = htmlentities($row['contact_title']);
-                    $contact_email = htmlentities($row['contact_email']);
+                    $contact_title = nullable_htmlentities($row['contact_title']);
+                    $contact_email = nullable_htmlentities($row['contact_email']);
                     $contact_phone = formatPhoneNumber($row['contact_phone']);
-                    $contact_extension = htmlentities($row['contact_extension']);
+                    $contact_extension = nullable_htmlentities($row['contact_extension']);
                     $contact_mobile = formatPhoneNumber($row['contact_mobile']);
 
                     $asset_id = intval($row['asset_id']);
diff --git a/client_trips.php b/client_trips.php
index f09e21a4..4f31a037 100644
--- a/client_trips.php
+++ b/client_trips.php
@@ -36,7 +36,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     <div class="col-md-4">
                         <div class="input-group mb-3 mb-md-0">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Trips">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Trips">
                             <div class="input-group-append">
                                 <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                             </div>
@@ -70,13 +70,13 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $trip_id = intval($row['trip_id']);
-                        $trip_date = htmlentities($row['trip_date']);
-                        $trip_purpose = htmlentities($row['trip_purpose']);
-                        $trip_source = htmlentities($row['trip_source']);
-                        $trip_destination = htmlentities($row['trip_destination']);
-                        $trip_miles = htmlentities($row['trip_miles']);
+                        $trip_date = nullable_htmlentities($row['trip_date']);
+                        $trip_purpose = nullable_htmlentities($row['trip_purpose']);
+                        $trip_source = nullable_htmlentities($row['trip_source']);
+                        $trip_destination = nullable_htmlentities($row['trip_destination']);
+                        $trip_miles = nullable_htmlentities($row['trip_miles']);
                         $trip_user_id = intval($row['trip_user_id']);
-                        $round_trip = htmlentities($row['round_trip']);
+                        $round_trip = nullable_htmlentities($row['round_trip']);
                         $client_id = intval($row['trip_client_id']);
 
                         if ($round_trip == 1) {
@@ -84,7 +84,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                         } else {
                             $round_trip_display = "";
                         }
-                        $user_name = htmlentities($row['user_name']);
+                        $user_name = nullable_htmlentities($row['user_name']);
                         if (empty($user_name)) {
                             $user_name_display = "-";
                         } else {
diff --git a/client_vendors.php b/client_vendors.php
index 502214c8..d2a972ac 100644
--- a/client_vendors.php
+++ b/client_vendors.php
@@ -44,7 +44,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     <div class="col-md-4">
                         <div class="input-group mb-3 mb-md-0">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Vendors">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Vendors">
                             <div class="input-group-append">
                                 <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                             </div>
@@ -75,28 +75,28 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $vendor_id = intval($row['vendor_id']);
-                        $vendor_name = htmlentities($row['vendor_name']);
-                        $vendor_description = htmlentities($row['vendor_description']);
+                        $vendor_name = nullable_htmlentities($row['vendor_name']);
+                        $vendor_description = nullable_htmlentities($row['vendor_description']);
                         if (empty($vendor_description)) {
                             $vendor_description_display = "-";
                         } else {
                             $vendor_description_display = $vendor_description;
                         }
-                        $vendor_account_number = htmlentities($row['vendor_account_number']);
-                        $vendor_contact_name = htmlentities($row['vendor_contact_name']);
+                        $vendor_account_number = nullable_htmlentities($row['vendor_account_number']);
+                        $vendor_contact_name = nullable_htmlentities($row['vendor_contact_name']);
                         if (empty($vendor_contact_name)) {
                             $vendor_contact_name_display = "-";
                         } else {
                             $vendor_contact_name_display = $vendor_contact_name;
                         }
                         $vendor_phone = formatPhoneNumber($row['vendor_phone']);
-                        $vendor_extension = htmlentities($row['vendor_extension']);
-                        $vendor_email = htmlentities($row['vendor_email']);
-                        $vendor_website = htmlentities($row['vendor_website']);
-                        $vendor_hours = htmlentities($row['vendor_hours']);
-                        $vendor_sla = htmlentities($row['vendor_sla']);
-                        $vendor_code = htmlentities($row['vendor_code']);
-                        $vendor_notes = htmlentities($row['vendor_notes']);
+                        $vendor_extension = nullable_htmlentities($row['vendor_extension']);
+                        $vendor_email = nullable_htmlentities($row['vendor_email']);
+                        $vendor_website = nullable_htmlentities($row['vendor_website']);
+                        $vendor_hours = nullable_htmlentities($row['vendor_hours']);
+                        $vendor_sla = nullable_htmlentities($row['vendor_sla']);
+                        $vendor_code = nullable_htmlentities($row['vendor_code']);
+                        $vendor_notes = nullable_htmlentities($row['vendor_notes']);
                         $vendor_template_id = intval($row['vendor_template_id']);
 
                         ?>
diff --git a/cron_ticket_email_parser.php b/cron_ticket_email_parser.php
index f3c19377..939d54b2 100644
--- a/cron_ticket_email_parser.php
+++ b/cron_ticket_email_parser.php
@@ -169,7 +169,7 @@ function addReply($from_email, $date, $subject, $ticket_number, $message, $attac
     // Capture just the latest/most recent email reply content
     //  based off the "#--itflow#" line that we prepend the outgoing emails with (similar to the old school --reply above this line--)
     $message = explode("##- Please type your reply above this line -##", $message);
-    $message = nl2br(htmlentities(strip_tags($message[0])));
+    $message = nl2br(nullable_htmlentities(strip_tags($message[0])));
     $message = "<i>Email from: $from_email at $date:-</i> <br><br>$message";
 
     // Lookup the ticket ID
@@ -312,13 +312,13 @@ if ($emails) {
         // Process message attributes
 
         $from_array = $parser->getAddresses('from')[0];
-        $from_name = trim(mysqli_real_escape_string($mysqli, htmlentities(strip_tags($from_array['display']))));
-        $from_email = trim(mysqli_real_escape_string($mysqli, htmlentities(strip_tags($from_array['address']))));
+        $from_name = trim(mysqli_real_escape_string($mysqli, nullable_htmlentities(strip_tags($from_array['display']))));
+        $from_email = trim(mysqli_real_escape_string($mysqli, nullable_htmlentities(strip_tags($from_array['address']))));
         $from_domain = explode("@", $from_array['address']);
-        $from_domain = trim(mysqli_real_escape_string($mysqli, htmlentities(strip_tags(end($from_domain))))); // Use the final element in the array (as technically legal to have multiple @'s)
+        $from_domain = trim(mysqli_real_escape_string($mysqli, nullable_htmlentities(strip_tags(end($from_domain))))); // Use the final element in the array (as technically legal to have multiple @'s)
 
         $subject = sanitizeInput($parser->getHeader('subject'));
-        $date = trim(mysqli_real_escape_string($mysqli, htmlentities(strip_tags($parser->getHeader('date')))));
+        $date = trim(mysqli_real_escape_string($mysqli, nullable_htmlentities(strip_tags($parser->getHeader('date')))));
         $attachments = $parser->getAttachments();
 
         $message = $parser->getMessageBody('text');
diff --git a/custom_field_create_modal.php b/custom_field_create_modal.php
index 0468c63a..8c6161ac 100644
--- a/custom_field_create_modal.php
+++ b/custom_field_create_modal.php
@@ -2,13 +2,13 @@
     <div class="modal-dialog">
         <div class="modal-content bg-dark">
             <div class="modal-header">
-                <h5 class="modal-title"><i class="fa fa-fw fa-list mr-2"></i>Create <?php echo htmlentities($table); ?> field</h5>
+                <h5 class="modal-title"><i class="fa fa-fw fa-list mr-2"></i>Create <?php echo nullable_htmlentities($table); ?> field</h5>
                 <button type="button" class="close text-white" data-dismiss="modal">
                     <span>&times;</span>
                 </button>
             </div>
             <form action="post.php" method="post" autocomplete="off">
-                <input type="hidden" name="table" value="<?php echo htmlentities($table); ?>">
+                <input type="hidden" name="table" value="<?php echo nullable_htmlentities($table); ?>">
 
                 <div class="modal-body bg-white">
 
diff --git a/dashboard_financial.php b/dashboard_financial.php
index f4267b69..a9f10bd5 100644
--- a/dashboard_financial.php
+++ b/dashboard_financial.php
@@ -320,7 +320,7 @@ $vendors_added = intval($row['vendors_added']);
                     <?php
                     while ($row = mysqli_fetch_array($sql_accounts)) {
                         $account_id = intval($row['account_id']);
-                        $account_name = htmlentities($row['account_name']);
+                        $account_name = nullable_htmlentities($row['account_name']);
                         $opening_balance = floatval($row['opening_balance']);
 
                         ?>
@@ -379,11 +379,11 @@ $vendors_added = intval($row['vendors_added']);
                     <tbody>
                     <?php
                     while ($row = mysqli_fetch_array($sql_latest_invoice_payments)) {
-                        $payment_date = htmlentities($row['payment_date']);
+                        $payment_date = nullable_htmlentities($row['payment_date']);
                         $payment_amount = floatval($row['payment_amount']);
-                        $invoice_prefix = htmlentities($row['invoice_prefix']);
+                        $invoice_prefix = nullable_htmlentities($row['invoice_prefix']);
                         $invoice_number = intval($row['invoice_number']);
-                        $client_name = htmlentities($row['client_name']);
+                        $client_name = nullable_htmlentities($row['client_name']);
                         ?>
                         <tr>
                             <td><?php echo $payment_date; ?></td>
@@ -422,10 +422,10 @@ $vendors_added = intval($row['vendors_added']);
                     <tbody>
                     <?php
                     while ($row = mysqli_fetch_array($sql_latest_expenses)) {
-                        $expense_date = htmlentities($row['expense_date']);
+                        $expense_date = nullable_htmlentities($row['expense_date']);
                         $expense_amount = floatval($row['expense_amount']);
-                        $vendor_name = htmlentities($row['vendor_name']);
-                        $category_name = htmlentities($row['category_name']);
+                        $vendor_name = nullable_htmlentities($row['vendor_name']);
+                        $category_name = nullable_htmlentities($row['category_name']);
 
                         ?>
                         <tr>
diff --git a/expense_add_modal.php b/expense_add_modal.php
index e8d473f5..7c9f940a 100644
--- a/expense_add_modal.php
+++ b/expense_add_modal.php
@@ -46,7 +46,7 @@
                                     $sql = mysqli_query($mysqli, "SELECT account_id, account_name, opening_balance FROM accounts WHERE account_archived_at IS NULL ORDER BY account_name ASC");
                                     while ($row = mysqli_fetch_array($sql)) {
                                         $account_id = intval($row['account_id']);
-                                        $account_name = htmlentities($row['account_name']);
+                                        $account_name = nullable_htmlentities($row['account_name']);
                                         $opening_balance = floatval($row['opening_balance']);
 
                                         $sql_payments = mysqli_query($mysqli, "SELECT SUM(payment_amount) AS total_payments FROM payments WHERE payment_account_id = $account_id");
@@ -86,7 +86,7 @@
                                     $sql = mysqli_query($mysqli, "SELECT vendor_id, vendor_name FROM vendors WHERE vendor_client_id = 0 AND vendor_template = 0 AND vendor_archived_at IS NULL ORDER BY vendor_name ASC");
                                     while ($row = mysqli_fetch_array($sql)) {
                                         $vendor_id = intval($row['vendor_id']);
-                                        $vendor_name = htmlentities($row['vendor_name']);
+                                        $vendor_name = nullable_htmlentities($row['vendor_name']);
                                         ?>
                                         <option value="<?php echo $vendor_id; ?>"><?php echo $vendor_name; ?></option>
 
@@ -131,7 +131,7 @@
                                     $sql = mysqli_query($mysqli, "SELECT category_id, category_name FROM categories WHERE category_type = 'Expense' AND category_archived_at IS NULL ORDER BY category_name ASC");
                                     while ($row = mysqli_fetch_array($sql)) {
                                         $category_id = intval($row['category_id']);
-                                        $category_name = htmlentities($row['category_name']);
+                                        $category_name = nullable_htmlentities($row['category_name']);
                                         ?>
                                         <option value="<?php echo $category_id; ?>"><?php echo $category_name; ?></option>
 
@@ -164,7 +164,7 @@
                                         $sql = mysqli_query($mysqli, "SELECT client_id, client_name FROM clients ORDER BY client_name ASC");
                                         while ($row = mysqli_fetch_array($sql)) {
                                             $client_id = intval($row['client_id']);
-                                            $client_name = htmlentities($row['client_name']);
+                                            $client_name = nullable_htmlentities($row['client_name']);
                                             ?>
                                             <option value="<?php echo $client_id; ?>"><?php echo $client_name; ?></option>
 
diff --git a/expense_copy_modal.php b/expense_copy_modal.php
index 22fc0174..797e2bf6 100644
--- a/expense_copy_modal.php
+++ b/expense_copy_modal.php
@@ -47,7 +47,7 @@
                                     $sql_accounts = mysqli_query($mysqli, "SELECT account_id, account_name, opening_balance FROM accounts ORDER BY account_name ASC");
                                     while ($row = mysqli_fetch_array($sql_accounts)) {
                                         $account_id_select = intval($row['account_id']);
-                                        $account_name_select = htmlentities($row['account_name']);
+                                        $account_name_select = nullable_htmlentities($row['account_name']);
                                         $opening_balance = floatval($row['opening_balance']);
 
                                         $sql_payments = mysqli_query($mysqli, "SELECT SUM(payment_amount) AS total_payments FROM payments WHERE payment_account_id = $account_id_select");
@@ -85,7 +85,7 @@
                                     $sql_vendors = mysqli_query($mysqli, "SELECT vendor_id, vendor_name FROM vendors WHERE vendor_client_id = 0 AND vendor_template = 0 ORDER BY vendor_name ASC");
                                     while ($row = mysqli_fetch_array($sql_vendors)) {
                                         $vendor_id_select = intval($row['vendor_id']);
-                                        $vendor_name_select = htmlentities($row['vendor_name']);
+                                        $vendor_name_select = nullable_htmlentities($row['vendor_name']);
                                         ?>
                                         <option <?php if ($expense_vendor_id == $vendor_id_select) { ?> selected <?php } ?> value="<?php echo $vendor_id_select; ?>"><?php echo $vendor_name_select; ?></option>
                                         <?php
@@ -127,7 +127,7 @@
                                     $sql_categories = mysqli_query($mysqli, "SELECT category_id, category_name FROM categories WHERE category_type = 'Expense' ORDER BY category_name ASC");
                                     while ($row = mysqli_fetch_array($sql_categories)) {
                                         $category_id_select = intval($row['category_id']);
-                                        $category_name_select = htmlentities($row['category_name']);
+                                        $category_name_select = nullable_htmlentities($row['category_name']);
                                         ?>
                                         <option <?php if ($expense_category_id == $category_id_select) { ?> selected <?php } ?> value="<?php echo $category_id_select; ?>"><?php echo $category_name_select; ?></option>
                                         <?php
@@ -155,7 +155,7 @@
                                         $sql_clients = mysqli_query($mysqli, "SELECT client_id, client_name FROM clients ORDER BY client_name ASC");
                                         while ($row = mysqli_fetch_array($sql_clients)) {
                                             $client_id_select = intval($row['client_id']);
-                                            $client_name_select = htmlentities($row['client_name']);
+                                            $client_name_select = nullable_htmlentities($row['client_name']);
                                             ?>
                                             <option <?php if ($expense_client_id == $client_id_select) { echo "selected"; } ?> value="<?php echo $client_id_select; ?>"><?php echo $client_name_select; ?></option>
 
diff --git a/expense_edit_modal.php b/expense_edit_modal.php
index a56bcf01..f0b2a941 100644
--- a/expense_edit_modal.php
+++ b/expense_edit_modal.php
@@ -49,7 +49,7 @@
                                     $sql_accounts = mysqli_query($mysqli, "SELECT account_id, account_name, opening_balance FROM accounts WHERE (account_archived_at > '$expense_created_at' OR account_archived_at IS NULL) ORDER BY account_name ASC");
                                     while ($row = mysqli_fetch_array($sql_accounts)) {
                                         $account_id_select = intval($row['account_id']);
-                                        $account_name_select = htmlentities($row['account_name']);
+                                        $account_name_select = nullable_htmlentities($row['account_name']);
                                         $opening_balance = floatval($row['opening_balance']);
 
                                         $sql_payments = mysqli_query($mysqli, "SELECT SUM(payment_amount) AS total_payments FROM payments WHERE payment_account_id = $account_id_select");
@@ -88,7 +88,7 @@
                                     $sql_select = mysqli_query($mysqli, "SELECT vendor_id, vendor_name FROM vendors WHERE vendor_client_id = 0 AND vendor_template = 0 AND (vendor_archived_at > '$expense_created_at' OR vendor_archived_at IS NULL) ORDER BY vendor_name ASC");
                                     while ($row = mysqli_fetch_array($sql_select)) {
                                         $vendor_id_select = intval($row['vendor_id']);
-                                        $vendor_name_select = htmlentities($row['vendor_name']);
+                                        $vendor_name_select = nullable_htmlentities($row['vendor_name']);
                                         ?>
                                         <option <?php if ($expense_vendor_id == $vendor_id_select) { ?> selected <?php } ?> value="<?php echo $vendor_id_select; ?>"><?php echo $vendor_name_select; ?></option>
                                         <?php
@@ -133,7 +133,7 @@
                                     $sql_select = mysqli_query($mysqli, "SELECT category_id, category_name FROM categories WHERE category_type = 'Expense' AND (category_archived_at > '$expense_created_at' OR category_archived_at IS NULL) ORDER BY category_name ASC");
                                     while ($row = mysqli_fetch_array($sql_select)) {
                                         $category_id_select = intval($row['category_id']);
-                                        $category_name_select = htmlentities($row['category_name']);
+                                        $category_name_select = nullable_htmlentities($row['category_name']);
                                         ?>
                                         <option <?php if ($expense_category_id == $category_id_select) { ?> selected <?php } ?> value="<?php echo $category_id_select; ?>"><?php echo $category_name_select; ?></option>
                                         <?php
@@ -164,7 +164,7 @@
                                         $sql_clients = mysqli_query($mysqli, "SELECT client_id, client_name FROM clients ORDER BY client_name ASC");
                                         while ($row = mysqli_fetch_array($sql_clients)) {
                                             $client_id_select = intval($row['client_id']);
-                                            $client_name_select = htmlentities($row['client_name']);
+                                            $client_name_select = nullable_htmlentities($row['client_name']);
                                             ?>
                                             <option <?php if ($expense_client_id == $client_id_select) { echo "selected"; } ?> value="<?php echo $client_id_select; ?>"><?php echo $client_name_select; ?></option>
 
diff --git a/expense_export_modal.php b/expense_export_modal.php
index 09feab87..8b6d733d 100644
--- a/expense_export_modal.php
+++ b/expense_export_modal.php
@@ -18,7 +18,7 @@
                             <div class="input-group-prepend">
                                 <span class="input-group-text"><i class="fa fa-fw fa-calendar"></i></span>
                             </div>
-                            <input type="date" class="form-control" name="date_from" max="2999-12-31" value="<?php echo htmlentities($dtf); ?>">
+                            <input type="date" class="form-control" name="date_from" max="2999-12-31" value="<?php echo nullable_htmlentities($dtf); ?>">
                         </div>
                     </div>
 
@@ -28,7 +28,7 @@
                             <div class="input-group-prepend">
                                 <span class="input-group-text"><i class="fa fa-fw fa-calendar"></i></span>
                             </div>
-                            <input type="date" class="form-control" name="date_to" max="2999-12-31" value="<?php echo htmlentities($dtt); ?>">
+                            <input type="date" class="form-control" name="date_to" max="2999-12-31" value="<?php echo nullable_htmlentities($dtt); ?>">
                         </div>
                     </div>
 
diff --git a/expenses.php b/expenses.php
index 602f0ab7..fb7afef1 100644
--- a/expenses.php
+++ b/expenses.php
@@ -39,7 +39,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                 <div class="row">
                     <div class="col-sm-4">
                         <div class="input-group">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Expenses">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Expenses">
                             <div class="input-group-append">
                                 <button class="btn btn-secondary" type="button" data-toggle="collapse" data-target="#advancedFilter"><i class="fas fa-filter"></i></button>
                                 <button class="btn btn-primary"><i class="fa fa-search"></i></button>
@@ -73,13 +73,13 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                         <div class="col-md-2">
                             <div class="form-group">
                                 <label>Date From</label>
-                                <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo htmlentities($dtf); ?>">
+                                <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo nullable_htmlentities($dtf); ?>">
                             </div>
                         </div>
                         <div class="col-md-2">
                             <div class="form-group">
                                 <label>Date To</label>
-                                <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo htmlentities($dtt); ?>">
+                                <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo nullable_htmlentities($dtt); ?>">
                             </div>
                         </div>
                     </div>
@@ -105,20 +105,20 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $expense_id = intval($row['expense_id']);
-                        $expense_date = htmlentities($row['expense_date']);
+                        $expense_date = nullable_htmlentities($row['expense_date']);
                         $expense_amount = floatval($row['expense_amount']);
-                        $expense_currency_code = htmlentities($row['expense_currency_code']);
-                        $expense_description = htmlentities($row['expense_description']);
-                        $expense_receipt = htmlentities($row['expense_receipt']);
-                        $expense_reference = htmlentities($row['expense_reference']);
-                        $expense_created_at = htmlentities($row['expense_created_at']);
+                        $expense_currency_code = nullable_htmlentities($row['expense_currency_code']);
+                        $expense_description = nullable_htmlentities($row['expense_description']);
+                        $expense_receipt = nullable_htmlentities($row['expense_receipt']);
+                        $expense_reference = nullable_htmlentities($row['expense_reference']);
+                        $expense_created_at = nullable_htmlentities($row['expense_created_at']);
                         $expense_vendor_id = intval($row['expense_vendor_id']);
-                        $vendor_name = htmlentities($row['vendor_name']);
+                        $vendor_name = nullable_htmlentities($row['vendor_name']);
                         $expense_category_id = intval($row['expense_category_id']);
-                        $category_name = htmlentities($row['category_name']);
-                        $account_name = htmlentities($row['account_name']);
+                        $category_name = nullable_htmlentities($row['category_name']);
+                        $account_name = nullable_htmlentities($row['account_name']);
                         $expense_account_id = intval($row['expense_account_id']);
-                        $client_name = htmlentities($row['client_name']);
+                        $client_name = nullable_htmlentities($row['client_name']);
                         if(empty($client_name)) {
                             $client_name_display = "-";
                         } else {
diff --git a/functions.php b/functions.php
index cc18fa72..9e7fae0d 100644
--- a/functions.php
+++ b/functions.php
@@ -46,7 +46,7 @@ function key32gen()
 }
 
 function nullable_htmlentities($unsanitizedInput) {
-    return htmlentities($unsanitizedInput ?? '');
+    return nullable_htmlentities($unsanitizedInput ?? '');
 }
 
 function initials($str) {
diff --git a/get_credential.php b/get_credential.php
index f161f59b..4314ba23 100644
--- a/get_credential.php
+++ b/get_credential.php
@@ -132,7 +132,7 @@ if (isset($_GET['host'])) {
         if (mysqli_num_rows($sql_logins) > 0) {
             $row = mysqli_fetch_array($sql_logins);
             $data['found'] = "TRUE";
-            $data['username'] = htmlentities(decryptLoginEntry($row['login_username']));
+            $data['username'] = nullable_htmlentities(decryptLoginEntry($row['login_username']));
             $data['password'] = decryptLoginEntry($row['login_password']); // Uses the PHP Session info and the session key cookie
             echo json_encode($data);
 
diff --git a/global_search.php b/global_search.php
index 32b276d5..5d718eed 100644
--- a/global_search.php
+++ b/global_search.php
@@ -21,7 +21,7 @@ if (isset($_GET['query'])) {
     $sql_tickets = mysqli_query($mysqli, "SELECT * FROM tickets LEFT JOIN clients on tickets.ticket_client_id = clients.client_id WHERE (ticket_subject LIKE '%$query%' OR ticket_number = '$ticket_num_query') ORDER BY ticket_id DESC LIMIT 5");
     $sql_logins = mysqli_query($mysqli, "SELECT * FROM logins WHERE login_name LIKE '%$query%' ORDER BY login_id DESC LIMIT 5");
 
-    $q = htmlentities($_GET['query']);
+    $q = nullable_htmlentities($_GET['query']);
     ?>
 
     <h4 class="text-center"><i class="fas fa-fw fa-search mr-2"></i>Search all things</h4>
@@ -50,9 +50,9 @@ if (isset($_GET['query'])) {
 
                             while ($row = mysqli_fetch_array($sql_clients)) {
                                 $client_id = intval($row['client_id']);
-                                $client_name = htmlentities($row['client_name']);
+                                $client_name = nullable_htmlentities($row['client_name']);
                                 $location_phone = formatPhoneNumber($row['location_phone']);
-                                $client_website = htmlentities($row['client_website']);
+                                $client_website = nullable_htmlentities($row['client_website']);
 
                                 ?>
                                 <tr>
@@ -95,15 +95,15 @@ if (isset($_GET['query'])) {
 
                             while ($row = mysqli_fetch_array($sql_contacts)) {
                                 $contact_id = intval($row['contact_id']);
-                                $contact_name = htmlentities($row['contact_name']);
-                                $contact_title = htmlentities($row['contact_title']);
+                                $contact_name = nullable_htmlentities($row['contact_name']);
+                                $contact_title = nullable_htmlentities($row['contact_title']);
                                 $contact_phone = formatPhoneNumber($row['contact_phone']);
-                                $contact_extension = htmlentities($row['contact_extension']);
+                                $contact_extension = nullable_htmlentities($row['contact_extension']);
                                 $contact_mobile = formatPhoneNumber($row['contact_mobile']);
-                                $contact_email = htmlentities($row['contact_email']);
+                                $contact_email = nullable_htmlentities($row['contact_email']);
                                 $client_id = intval($row['client_id']);
-                                $client_name = htmlentities($row['client_name']);
-                                $contact_department = htmlentities($row['contact_department']);
+                                $client_name = nullable_htmlentities($row['client_name']);
+                                $contact_department = nullable_htmlentities($row['contact_department']);
 
                                 ?>
                                 <tr>
@@ -148,8 +148,8 @@ if (isset($_GET['query'])) {
                             <?php
 
                             while ($row = mysqli_fetch_array($sql_vendors)) {
-                                $vendor_name = htmlentities($row['vendor_name']);
-                                $vendor_description = htmlentities($row['vendor_description']);
+                                $vendor_name = nullable_htmlentities($row['vendor_name']);
+                                $vendor_description = nullable_htmlentities($row['vendor_description']);
                                 $vendor_phone = formatPhoneNumber($row['vendor_phone']);
                                 ?>
                                 <tr>
@@ -189,8 +189,8 @@ if (isset($_GET['query'])) {
                             <?php
 
                             while ($row = mysqli_fetch_array($sql_products)) {
-                                $product_name = htmlentities($row['product_name']);
-                                $product_description = htmlentities($row['product_description']);
+                                $product_name = nullable_htmlentities($row['product_name']);
+                                $product_description = nullable_htmlentities($row['product_description']);
                                 ?>
                                 <tr>
                                     <td><a href="products.php?q=<?php echo $q ?>"><?php echo $product_name; ?></a></td>
@@ -229,9 +229,9 @@ if (isset($_GET['query'])) {
 
                             while ($row = mysqli_fetch_array($sql_documents)) {
                                 $document_id = intval($row['document_id']);
-                                $document_name = htmlentities($row['document_name']);
+                                $document_name = nullable_htmlentities($row['document_name']);
                                 $client_id = intval($row['document_client_id']);
-                                $client_name = htmlentities($row['client_name']);
+                                $client_name = nullable_htmlentities($row['client_name']);
 
                                 ?>
                                 <tr>
@@ -275,11 +275,11 @@ if (isset($_GET['query'])) {
 
                             while ($row = mysqli_fetch_array($sql_tickets)) {
                                 $ticket_id = intval($row['ticket_id']);
-                                $ticket_prefix = htmlentities($row['ticket_prefix']);
+                                $ticket_prefix = nullable_htmlentities($row['ticket_prefix']);
                                 $ticket_number = intval($row['ticket_number']);
-                                $ticket_subject = htmlentities($row['ticket_subject']);
-                                $ticket_client = htmlentities($row['client_name']);
-                                $ticket_status = htmlentities($row['ticket_status']);
+                                $ticket_subject = nullable_htmlentities($row['ticket_subject']);
+                                $ticket_client = nullable_htmlentities($row['client_name']);
+                                $ticket_status = nullable_htmlentities($row['ticket_status']);
 
                                 ?>
                                 <tr>
@@ -322,10 +322,10 @@ if (isset($_GET['query'])) {
                             <?php
 
                             while ($row = mysqli_fetch_array($sql_logins)) {
-                                $login_name = htmlentities($row['login_name']);
+                                $login_name = nullable_htmlentities($row['login_name']);
                                 $login_client_id = intval($row['login_client_id']);
-                                $login_username = htmlentities(decryptLoginEntry($row['login_username']));
-                                $login_password = htmlentities(decryptLoginEntry($row['login_password']));
+                                $login_username = nullable_htmlentities(decryptLoginEntry($row['login_username']));
+                                $login_password = nullable_htmlentities(decryptLoginEntry($row['login_password']));
 
                                 ?>
                                 <tr>
diff --git a/guest_ajax.php b/guest_ajax.php
index 7878780d..4d26ae3c 100644
--- a/guest_ajax.php
+++ b/guest_ajax.php
@@ -42,12 +42,12 @@ if (isset($_GET['stripe_create_pi'])) {
 
     // Invoice exists - get details for payment
     $row = mysqli_fetch_array($invoice_sql);
-    $invoice_prefix = htmlentities($row['invoice_prefix']);
+    $invoice_prefix = nullable_htmlentities($row['invoice_prefix']);
     $invoice_number = intval($row['invoice_number']);
     $invoice_amount = floatval($row['invoice_amount']);
-    $invoice_currency_code = htmlentities($row['invoice_currency_code']);
+    $invoice_currency_code = nullable_htmlentities($row['invoice_currency_code']);
     $client_id = intval($row['client_id']);
-    $client_name = htmlentities($row['client_name']);
+    $client_name = nullable_htmlentities($row['client_name']);
 
     // Add up all the payments for the invoice and get the total amount paid to the invoice
     $sql_amount_paid = mysqli_query($mysqli, "SELECT SUM(payment_amount) AS amount_paid FROM payments WHERE payment_invoice_id = $invoice_id");
diff --git a/guest_header.php b/guest_header.php
index f845c9ca..fe649a0b 100644
--- a/guest_header.php
+++ b/guest_header.php
@@ -20,7 +20,7 @@ $browser = sanitizeInput(getWebBrowser($ua));
     <meta http-equiv="x-ua-compatible" content="ie=edge">
     <meta name="robots" content="noindex">
 
-    <title><?php echo htmlentities($config_app_name); ?></title>
+    <title><?php echo nullable_htmlentities($config_app_name); ?></title>
 
     <!-- Font Awesome Icons -->
     <link rel="stylesheet" href="plugins/fontawesome-free/css/all.min.css">
@@ -52,7 +52,7 @@ $browser = sanitizeInput(getWebBrowser($ua));
                     }
                     ?>
                     <div class="alert alert-<?php echo $_SESSION['alert_type']; ?>" id="alert">
-                        <?php echo htmlentities($_SESSION['alert_message']); ?>
+                        <?php echo nullable_htmlentities($_SESSION['alert_message']); ?>
                         <button class='close' data-dismiss='alert'>&times;</button>
                     </div>
                     <?php
diff --git a/guest_pay_invoice_stripe.php b/guest_pay_invoice_stripe.php
index 90ecc208..9cad3dc0 100644
--- a/guest_pay_invoice_stripe.php
+++ b/guest_pay_invoice_stripe.php
@@ -9,8 +9,8 @@ DEFINE("WORDING_PAYMENT_FAILED", "<br><h2>There was an error verifying your paym
 //  Defaulting to company id of 1 (as multi-company is being removed)
 $stripe_vars = mysqli_fetch_array(mysqli_query($mysqli, "SELECT config_stripe_enable, config_stripe_publishable, config_stripe_secret, config_stripe_account FROM settings WHERE company_id = 1"));
 $config_stripe_enable = intval($stripe_vars['config_stripe_enable']);
-$config_stripe_publishable = htmlentities($stripe_vars['config_stripe_publishable']);
-$config_stripe_secret = htmlentities($stripe_vars['config_stripe_secret']);
+$config_stripe_publishable = nullable_htmlentities($stripe_vars['config_stripe_publishable']);
+$config_stripe_secret = nullable_htmlentities($stripe_vars['config_stripe_secret']);
 $config_stripe_account = intval($stripe_vars['config_stripe_account']);
 
 // Check Stripe is configured
@@ -50,19 +50,19 @@ if (isset($_GET['invoice_id'], $_GET['url_key']) && !isset($_GET['payment_intent
     // Process invoice, client and company details/settings
     $row = mysqli_fetch_array($sql);
     $invoice_id = intval($row['invoice_id']);
-    $invoice_prefix = htmlentities($row['invoice_prefix']);
+    $invoice_prefix = nullable_htmlentities($row['invoice_prefix']);
     $invoice_number = intval($row['invoice_number']);
-    $invoice_status = htmlentities($row['invoice_status']);
-    $invoice_date = htmlentities($row['invoice_date']);
-    $invoice_due = htmlentities($row['invoice_due']);
+    $invoice_status = nullable_htmlentities($row['invoice_status']);
+    $invoice_date = nullable_htmlentities($row['invoice_date']);
+    $invoice_due = nullable_htmlentities($row['invoice_due']);
     $invoice_amount = floatval($row['invoice_amount']);
-    $invoice_currency_code = htmlentities($row['invoice_currency_code']);
+    $invoice_currency_code = nullable_htmlentities($row['invoice_currency_code']);
     $client_id = intval($row['client_id']);
-    $client_name = htmlentities($row['client_name']);
+    $client_name = nullable_htmlentities($row['client_name']);
     
     $sql = mysqli_query($mysqli, "SELECT * FROM companies, settings WHERE companies.company_id = settings.company_id AND companies.company_id = 1");
     $row = mysqli_fetch_array($sql);
-    $company_locale = htmlentities($row['company_locale']);
+    $company_locale = nullable_htmlentities($row['company_locale']);
 
     // Add up all the payments for the invoice and get the total amount paid to the invoice
     $sql_amount_paid = mysqli_query($mysqli, "SELECT SUM(payment_amount) AS amount_paid FROM payments WHERE payment_invoice_id = $invoice_id");
@@ -105,7 +105,7 @@ if (isset($_GET['invoice_id'], $_GET['url_key']) && !isset($_GET['payment_intent
                     $item_total = 0;
 
                     while ($row = mysqli_fetch_array($sql_invoice_items)) {
-                        $item_name = htmlentities($row['item_name']);
+                        $item_name = nullable_htmlentities($row['item_name']);
                         $item_quantity = floatval($row['item_quantity']);
                         $item_total = floatval($row['item_total']);
                         ?>
@@ -208,22 +208,22 @@ if (isset($_GET['invoice_id'], $_GET['url_key']) && !isset($_GET['payment_intent
     // Invoice exists - get details
     $row = mysqli_fetch_array($invoice_sql);
     $invoice_id = intval($row['invoice_id']);
-    $invoice_prefix = htmlentities($row['invoice_prefix']);
+    $invoice_prefix = nullable_htmlentities($row['invoice_prefix']);
     $invoice_number = intval($row['invoice_number']);
     $invoice_amount = floatval($row['invoice_amount']);
-    $invoice_currency_code = htmlentities($row['invoice_currency_code']);
-    $invoice_url_key = htmlentities($row['invoice_url_key']);
+    $invoice_currency_code = nullable_htmlentities($row['invoice_currency_code']);
+    $invoice_url_key = nullable_htmlentities($row['invoice_url_key']);
     $client_id = intval($row['client_id']);
-    $client_name = htmlentities($row['client_name']);
+    $client_name = nullable_htmlentities($row['client_name']);
     $contact_name = $row['contact_name'];
     $contact_email = $row['contact_email'];
     
     $sql_company = mysqli_query($mysqli, "SELECT * FROM companies WHERE company_id = 1");
     $row = mysqli_fetch_array($sql_company);
 
-    $company_name = mysqli_real_escape_string($mysqli, htmlentities($row['company_name']));
-    $company_phone = htmlentities($row['company_phone']);
-    $company_locale = htmlentities($row['company_locale']);
+    $company_name = mysqli_real_escape_string($mysqli, nullable_htmlentities($row['company_name']));
+    $company_phone = nullable_htmlentities($row['company_phone']);
+    $company_locale = nullable_htmlentities($row['company_locale']);
 
     // Set Currency Formatting
     $currency_format = numfmt_create($company_locale, NumberFormatter::CURRENCY);
diff --git a/guest_view_invoice.php b/guest_view_invoice.php
index 4011cb14..0d5b42e9 100644
--- a/guest_view_invoice.php
+++ b/guest_view_invoice.php
@@ -31,28 +31,28 @@ if (mysqli_num_rows($sql) !== 1) {
 $row = mysqli_fetch_array($sql);
 
 $invoice_id = intval($row['invoice_id']);
-$invoice_prefix = htmlentities($row['invoice_prefix']);
+$invoice_prefix = nullable_htmlentities($row['invoice_prefix']);
 $invoice_number = intval($row['invoice_number']);
-$invoice_status = htmlentities($row['invoice_status']);
-$invoice_date = htmlentities($row['invoice_date']);
-$invoice_due = htmlentities($row['invoice_due']);
+$invoice_status = nullable_htmlentities($row['invoice_status']);
+$invoice_date = nullable_htmlentities($row['invoice_date']);
+$invoice_due = nullable_htmlentities($row['invoice_due']);
 $invoice_amount = floatval($row['invoice_amount']);
-$invoice_currency_code = htmlentities($row['invoice_currency_code']);
-$invoice_note = htmlentities($row['invoice_note']);
+$invoice_currency_code = nullable_htmlentities($row['invoice_currency_code']);
+$invoice_note = nullable_htmlentities($row['invoice_note']);
 $invoice_category_id = intval($row['invoice_category_id']);
 $client_id = intval($row['client_id']);
-$client_name = htmlentities($row['client_name']);
+$client_name = nullable_htmlentities($row['client_name']);
 $client_name_escaped = sanitizeInput($row['client_name']);
-$location_address = htmlentities($row['location_address']);
-$location_city = htmlentities($row['location_city']);
-$location_state = htmlentities($row['location_state']);
-$location_zip = htmlentities($row['location_zip']);
-$contact_email = htmlentities($row['contact_email']);
+$location_address = nullable_htmlentities($row['location_address']);
+$location_city = nullable_htmlentities($row['location_city']);
+$location_state = nullable_htmlentities($row['location_state']);
+$location_zip = nullable_htmlentities($row['location_zip']);
+$contact_email = nullable_htmlentities($row['contact_email']);
 $contact_phone = formatPhoneNumber($row['contact_phone']);
-$contact_extension = htmlentities($row['contact_extension']);
+$contact_extension = nullable_htmlentities($row['contact_extension']);
 $contact_mobile = formatPhoneNumber($row['contact_mobile']);
-$client_website = htmlentities($row['client_website']);
-$client_currency_code = htmlentities($row['client_currency_code']);
+$client_website = nullable_htmlentities($row['client_website']);
+$client_currency_code = nullable_htmlentities($row['client_currency_code']);
 $client_net_terms = intval($row['client_net_terms']);
 if ($client_net_terms == 0) {
     $client_net_terms = intval($row['config_default_net_terms']);
@@ -61,20 +61,20 @@ if ($client_net_terms == 0) {
 $sql = mysqli_query($mysqli, "SELECT * FROM companies, settings WHERE companies.company_id = settings.company_id AND companies.company_id = 1");
 $row = mysqli_fetch_array($sql);
 
-$company_name = htmlentities($row['company_name']);
-$company_address = htmlentities($row['company_address']);
-$company_city = htmlentities($row['company_city']);
-$company_state = htmlentities($row['company_state']);
-$company_zip = htmlentities($row['company_zip']);
+$company_name = nullable_htmlentities($row['company_name']);
+$company_address = nullable_htmlentities($row['company_address']);
+$company_city = nullable_htmlentities($row['company_city']);
+$company_state = nullable_htmlentities($row['company_state']);
+$company_zip = nullable_htmlentities($row['company_zip']);
 $company_phone = formatPhoneNumber($row['company_phone']);
-$company_email = htmlentities($row['company_email']);
-$company_website = htmlentities($row['company_website']);
-$company_logo = htmlentities($row['company_logo']);
+$company_email = nullable_htmlentities($row['company_email']);
+$company_website = nullable_htmlentities($row['company_website']);
+$company_logo = nullable_htmlentities($row['company_logo']);
 if (!empty($company_logo)) {
     $company_logo_base64 = base64_encode(file_get_contents("uploads/settings/$company_logo"));
 }
-$company_locale = htmlentities($row['company_locale']);
-$config_invoice_footer = htmlentities($row['config_invoice_footer']);
+$company_locale = nullable_htmlentities($row['company_locale']);
+$config_invoice_footer = nullable_htmlentities($row['config_invoice_footer']);
 $config_stripe_enable = intval($row['config_stripe_enable']);
 
 //Set Currency Format
@@ -212,8 +212,8 @@ $sql_invoice_items = mysqli_query($mysqli, "SELECT * FROM invoice_items WHERE it
 
                                 while ($row = mysqli_fetch_array($sql_invoice_items)) {
                                     $item_id = intval($row['item_id']);
-                                    $item_name = htmlentities($row['item_name']);
-                                    $item_description = htmlentities($row['item_description']);
+                                    $item_name = nullable_htmlentities($row['item_name']);
+                                    $item_description = nullable_htmlentities($row['item_description']);
                                     $item_quantity = floatval($row['item_quantity']);
                                     $item_price = floatval($row['item_price']);
                                     $item_tax = floatval($row['item_tax']);
@@ -734,13 +734,13 @@ if (mysqli_num_rows($sql) > 1) { ?>
 
                 while ($row = mysqli_fetch_array($sql)) {
                     $invoice_id = intval($row['invoice_id']);
-                    $invoice_prefix = htmlentities($row['invoice_prefix']);
+                    $invoice_prefix = nullable_htmlentities($row['invoice_prefix']);
                     $invoice_number = intval($row['invoice_number']);
-                    $invoice_date = htmlentities($row['invoice_date']);
-                    $invoice_due = htmlentities($row['invoice_due']);
+                    $invoice_date = nullable_htmlentities($row['invoice_date']);
+                    $invoice_due = nullable_htmlentities($row['invoice_due']);
                     $invoice_amount = floatval($row['invoice_amount']);
-                    $invoice_currency_code = htmlentities($row['invoice_currency_code']);
-                    $invoice_url_key = htmlentities($row['invoice_url_key']);
+                    $invoice_currency_code = nullable_htmlentities($row['invoice_currency_code']);
+                    $invoice_url_key = nullable_htmlentities($row['invoice_url_key']);
                     $invoice_tally_total = $invoice_amount + $invoice_tally_total;
                     $difference = time() - strtotime($invoice_due);
                     $days = floor($difference / (60*60*24));
@@ -792,13 +792,13 @@ if (mysqli_num_rows($sql) > 1) { ?>
 
                 while ($row = mysqli_fetch_array($sql)) {
                     $invoice_id = intval($row['invoice_id']);
-                    $invoice_prefix = htmlentities($row['invoice_prefix']);
+                    $invoice_prefix = nullable_htmlentities($row['invoice_prefix']);
                     $invoice_number = intval($row['invoice_number']);
-                    $invoice_date = htmlentities($row['invoice_date']);
-                    $invoice_due = htmlentities($row['invoice_due']);
+                    $invoice_date = nullable_htmlentities($row['invoice_date']);
+                    $invoice_due = nullable_htmlentities($row['invoice_due']);
                     $invoice_amount = floatval($row['invoice_amount']);
-                    $invoice_currency_code = htmlentities($row['invoice_currency_code']);
-                    $invoice_url_key = htmlentities($row['invoice_url_key']);
+                    $invoice_currency_code = nullable_htmlentities($row['invoice_currency_code']);
+                    $invoice_url_key = nullable_htmlentities($row['invoice_url_key']);
                     $invoice_tally_total = $invoice_amount + $invoice_tally_total;
                     $difference = strtotime($invoice_due) - time();
                     $days = floor($difference / (60*60*24));
@@ -850,13 +850,13 @@ if (mysqli_num_rows($sql) > 1) { ?>
 
                 while ($row = mysqli_fetch_array($sql)) {
                     $invoice_id = intval($row['invoice_id']);
-                    $invoice_prefix = htmlentities($row['invoice_prefix']);
+                    $invoice_prefix = nullable_htmlentities($row['invoice_prefix']);
                     $invoice_number = intval($row['invoice_number']);
-                    $invoice_date = htmlentities($row['invoice_date']);
-                    $invoice_due = htmlentities($row['invoice_due']);
+                    $invoice_date = nullable_htmlentities($row['invoice_date']);
+                    $invoice_due = nullable_htmlentities($row['invoice_due']);
                     $invoice_amount = floatval($row['invoice_amount']);
-                    $invoice_currency_code = htmlentities($row['invoice_currency_code']);
-                    $invoice_url_key = htmlentities($row['invoice_url_key']);
+                    $invoice_currency_code = nullable_htmlentities($row['invoice_currency_code']);
+                    $invoice_url_key = nullable_htmlentities($row['invoice_url_key']);
                     $invoice_tally_total = $invoice_amount + $invoice_tally_total;
 
                     ?>
@@ -878,11 +878,11 @@ if (mysqli_num_rows($sql) > 1) { ?>
 
                     while ($row = mysqli_fetch_array($sql_payments)) {
                         $payment_id = intval($row['payment_id']);
-                        $payment_date = htmlentities($row['payment_date']);
+                        $payment_date = nullable_htmlentities($row['payment_date']);
                         $payment_amount = floatval($row['payment_amount']);
-                        $payment_currency_code = htmlentities($row['payment_currency_code']);
-                        $payment_method = htmlentities($row['payment_method']);
-                        $payment_reference = htmlentities($row['payment_reference']);
+                        $payment_currency_code = nullable_htmlentities($row['payment_currency_code']);
+                        $payment_method = nullable_htmlentities($row['payment_method']);
+                        $payment_reference = nullable_htmlentities($row['payment_reference']);
                         if (strtotime($payment_date) > strtotime($invoice_due)) {
                             $payment_note = "Late";
                             $difference = strtotime($payment_date) - strtotime($invoice_due);
diff --git a/guest_view_item.php b/guest_view_item.php
index 8f7d10bb..d757fdd8 100644
--- a/guest_view_item.php
+++ b/guest_view_item.php
@@ -15,7 +15,7 @@ $purifier = new HTMLPurifier($purifier_config);
 ?>
 
     <br>
-    <h1> <?php echo htmlentities($config_app_name); ?> Guest sharing </h1>
+    <h1> <?php echo nullable_htmlentities($config_app_name); ?> Guest sharing </h1>
     <hr>
 
 <?php
@@ -49,13 +49,13 @@ if ($row['item_active'] !== "1" || $row['item_views'] >= $row['item_view_limit']
 
 echo "<div class='alert alert-warning'>You may only be able to view this information for a limited time! Be sure to copy/download what you need.</div>";
 
-$item_type = htmlentities($row['item_type']);
+$item_type = nullable_htmlentities($row['item_type']);
 $item_related_id = intval($row['item_related_id']);
-$item_encrypted_credential = htmlentities($row['item_encrypted_credential']);
-$item_note = htmlentities($row['item_note']);
+$item_encrypted_credential = nullable_htmlentities($row['item_encrypted_credential']);
+$item_note = nullable_htmlentities($row['item_note']);
 $item_views = intval($row['item_views']);
-$item_created = htmlentities($row['item_created_at']);
-$item_expire = htmlentities($row['item_expire_at']);
+$item_created = nullable_htmlentities($row['item_created_at']);
+$item_expire = nullable_htmlentities($row['item_expire_at']);
 $client_id = intval($row['item_client_id']);
 
 if ($item_type == "Document") {
@@ -68,7 +68,7 @@ if ($item_type == "Document") {
         exit();
     }
 
-    $doc_title = htmlentities($doc_row['document_name']);
+    $doc_title = nullable_htmlentities($doc_row['document_name']);
     $doc_title_escaped = sanitizeInput($doc_row['document_name']);
     $doc_content = $purifier->purify($row['document_content']);
 
@@ -98,7 +98,7 @@ if ($item_type == "Document") {
         exit();
     }
 
-    $file_name = htmlentities($file_row['file_name']);
+    $file_name = nullable_htmlentities($file_row['file_name']);
 
     echo "<h3>A file has been shared with you</h3>";
     if (!empty($item_note)) {
@@ -118,19 +118,19 @@ if ($item_type == "Document") {
         exit();
     }
 
-    $login_name = htmlentities($login_row['login_name']);
-    $login_uri = htmlentities($login_row['login_uri']);
+    $login_name = nullable_htmlentities($login_row['login_name']);
+    $login_uri = nullable_htmlentities($login_row['login_uri']);
 
     $username_iv = substr($row['item_encrypted_username'], 0, 16);
     $username_ciphertext = substr($row['item_encrypted_username'], 16);
-    $login_username = htmlentities(openssl_decrypt($username_ciphertext, 'aes-128-cbc', $encryption_key, 0, $username_iv));
+    $login_username = nullable_htmlentities(openssl_decrypt($username_ciphertext, 'aes-128-cbc', $encryption_key, 0, $username_iv));
 
     $password_iv = substr($row['item_encrypted_credential'], 0, 16);
     $password_ciphertext = substr($row['item_encrypted_credential'], 16);
-    $login_password = htmlentities(openssl_decrypt($password_ciphertext, 'aes-128-cbc', $encryption_key, 0, $password_iv));
+    $login_password = nullable_htmlentities(openssl_decrypt($password_ciphertext, 'aes-128-cbc', $encryption_key, 0, $password_iv));
 
-    $login_otp = htmlentities($login_row['login_otp_secret']);
-    $login_notes = htmlentities($login_row['login_note']);
+    $login_otp = nullable_htmlentities($login_row['login_otp_secret']);
+    $login_notes = nullable_htmlentities($login_row['login_note']);
 
     echo "<h3>A login entry has been shared with you</h3>";
     if (!empty($item_note)) {
diff --git a/guest_view_quote.php b/guest_view_quote.php
index a0dcf575..d9e485a4 100644
--- a/guest_view_quote.php
+++ b/guest_view_quote.php
@@ -32,27 +32,27 @@ if (mysqli_num_rows($sql) !== 1) {
 $row = mysqli_fetch_array($sql);
 
 $quote_id = intval($row['quote_id']);
-$quote_prefix = htmlentities($row['quote_prefix']);
+$quote_prefix = nullable_htmlentities($row['quote_prefix']);
 $quote_number = intval($row['quote_number']);
-$quote_status = htmlentities($row['quote_status']);
-$quote_date = htmlentities($row['quote_date']);
+$quote_status = nullable_htmlentities($row['quote_status']);
+$quote_date = nullable_htmlentities($row['quote_date']);
 $quote_amount = floatval($row['quote_amount']);
-$quote_currency_code = htmlentities($row['quote_currency_code']);
-$quote_note = htmlentities($row['quote_note']);
+$quote_currency_code = nullable_htmlentities($row['quote_currency_code']);
+$quote_note = nullable_htmlentities($row['quote_note']);
 $category_id = intval($row['category_id']);
 $client_id = intval($row['client_id']);
-$client_name = htmlentities($row['client_name']);
+$client_name = nullable_htmlentities($row['client_name']);
 $client_name_escaped = sanitizeInput($row['client_name']);
-$location_address = htmlentities($row['location_address']);
-$location_city = htmlentities($row['location_city']);
-$location_state = htmlentities($row['location_state']);
-$location_zip = htmlentities($row['location_zip']);
-$contact_email = htmlentities($row['contact_email']);
+$location_address = nullable_htmlentities($row['location_address']);
+$location_city = nullable_htmlentities($row['location_city']);
+$location_state = nullable_htmlentities($row['location_state']);
+$location_zip = nullable_htmlentities($row['location_zip']);
+$contact_email = nullable_htmlentities($row['contact_email']);
 $contact_phone = formatPhoneNumber($row['contact_phone']);
-$contact_extension = htmlentities($row['contact_extension']);
+$contact_extension = nullable_htmlentities($row['contact_extension']);
 $contact_mobile = formatPhoneNumber($row['contact_mobile']);
-$client_website = htmlentities($row['client_website']);
-$client_currency_code = htmlentities($row['client_currency_code']);
+$client_website = nullable_htmlentities($row['client_website']);
+$client_currency_code = nullable_htmlentities($row['client_currency_code']);
 $client_net_terms = intval($row['client_net_terms']);
 if ($client_net_terms == 0) {
     $client_net_terms = intval($row['config_default_net_terms']);
@@ -60,20 +60,20 @@ if ($client_net_terms == 0) {
 
 $sql = mysqli_query($mysqli, "SELECT * FROM companies, settings WHERE companies.company_id = settings.company_id AND companies.company_id = 1");
 $row = mysqli_fetch_array($sql);
-$company_name = htmlentities($row['company_name']);
-$company_address = htmlentities($row['company_address']);
-$company_city = htmlentities($row['company_city']);
-$company_state = htmlentities($row['company_state']);
-$company_zip = htmlentities($row['company_zip']);
+$company_name = nullable_htmlentities($row['company_name']);
+$company_address = nullable_htmlentities($row['company_address']);
+$company_city = nullable_htmlentities($row['company_city']);
+$company_state = nullable_htmlentities($row['company_state']);
+$company_zip = nullable_htmlentities($row['company_zip']);
 $company_phone = formatPhoneNumber($row['company_phone']);
-$company_email = htmlentities($row['company_email']);
-$company_website = htmlentities($row['company_website']);
-$company_logo = htmlentities($row['company_logo']);
+$company_email = nullable_htmlentities($row['company_email']);
+$company_website = nullable_htmlentities($row['company_website']);
+$company_logo = nullable_htmlentities($row['company_logo']);
 if (!empty($company_logo)) {
     $company_logo_base64 = base64_encode(file_get_contents("uploads/settings/$company_logo"));
 }
-$company_locale = htmlentities($row['company_locale']);
-$config_quote_footer = htmlentities($row['config_quote_footer']);
+$company_locale = nullable_htmlentities($row['company_locale']);
+$config_quote_footer = nullable_htmlentities($row['config_quote_footer']);
 
 //Set Currency Format
 $currency_format = numfmt_create($company_locale, NumberFormatter::CURRENCY);
@@ -189,8 +189,8 @@ if ($quote_status == "Draft" || $quote_status == "Sent" || $quote_status == "Vie
 
                                 while ($row = mysqli_fetch_array($sql_items)) {
                                     $item_id = intval($row['item_id']);
-                                    $item_name = htmlentities($row['item_name']);
-                                    $item_description = htmlentities($row['item_description']);
+                                    $item_name = nullable_htmlentities($row['item_name']);
+                                    $item_description = nullable_htmlentities($row['item_description']);
                                     $item_quantity = floatval($row['item_quantity']);
                                     $item_price = floatval($row['item_price']);
                                     $item_tax = floatval($row['item_tax']);
diff --git a/header.php b/header.php
index c091fbcf..b48bd7fb 100644
--- a/header.php
+++ b/header.php
@@ -16,7 +16,7 @@ header("X-Frame-Options: DENY");
     <meta http-equiv="x-ua-compatible" content="ie=edge">
     <meta name="robots" content="noindex">
 
-    <title><?php echo htmlentities($session_company_name); ?> | <?php echo htmlentities($config_app_name); ?></title>
+    <title><?php echo nullable_htmlentities($session_company_name); ?> | <?php echo nullable_htmlentities($config_app_name); ?></title>
 
     <!-- Font Awesome Icons -->
     <link rel="stylesheet" href="plugins/fontawesome-free/css/all.min.css">
@@ -36,5 +36,5 @@ header("X-Frame-Options: DENY");
     <script src="plugins/toastr/toastr.min.js"></script>
 
 </head>
-<body class="hold-transition sidebar-mini layout-fixed accent-<?php echo htmlentities($config_theme); ?>">
+<body class="hold-transition sidebar-mini layout-fixed accent-<?php echo nullable_htmlentities($config_theme); ?>">
     <div class="wrapper text-sm">
diff --git a/inc_all_client.php b/inc_all_client.php
index 49827e0f..4a81e6d3 100644
--- a/inc_all_client.php
+++ b/inc_all_client.php
@@ -25,35 +25,35 @@ if (isset($_GET['client_id'])) {
     } else {
 
         $row = mysqli_fetch_array($sql);
-        $client_name = htmlentities($row['client_name']);
-        $client_type = htmlentities($row['client_type']);
-        $client_website = htmlentities($row['client_website']);
-        $client_referral = htmlentities($row['client_referral']);
-        $client_currency_code = htmlentities($row['client_currency_code']);
+        $client_name = nullable_htmlentities($row['client_name']);
+        $client_type = nullable_htmlentities($row['client_type']);
+        $client_website = nullable_htmlentities($row['client_website']);
+        $client_referral = nullable_htmlentities($row['client_referral']);
+        $client_currency_code = nullable_htmlentities($row['client_currency_code']);
         $client_net_terms = intval($row['client_net_terms']);
         if ($client_net_terms == 0) {
             $client_net_terms = $config_default_net_terms;
         }
-        $client_tax_id_number = htmlentities($row['client_tax_id_number']);
+        $client_tax_id_number = nullable_htmlentities($row['client_tax_id_number']);
         $client_rate = floatval($row['client_rate']);
-        $client_notes = htmlentities($row['client_notes']);
-        $client_created_at = htmlentities($row['client_created_at']);
+        $client_notes = nullable_htmlentities($row['client_notes']);
+        $client_created_at = nullable_htmlentities($row['client_created_at']);
         $primary_contact = intval($row['primary_contact']);
         $primary_location = intval($row['primary_location']);
         $contact_id = intval($row['contact_id']);
-        $contact_name = htmlentities($row['contact_name']);
-        $contact_title = htmlentities($row['contact_title']);
-        $contact_email = htmlentities($row['contact_email']);
+        $contact_name = nullable_htmlentities($row['contact_name']);
+        $contact_title = nullable_htmlentities($row['contact_title']);
+        $contact_email = nullable_htmlentities($row['contact_email']);
         $contact_phone = formatPhoneNumber($row['contact_phone']);
-        $contact_extension = htmlentities($row['contact_extension']);
+        $contact_extension = nullable_htmlentities($row['contact_extension']);
         $contact_mobile = formatPhoneNumber($row['contact_mobile']);
         $location_id = intval($row['location_id']);
-        $location_name = htmlentities($row['location_name']);
-        $location_address = htmlentities($row['location_address']);
-        $location_city = htmlentities($row['location_city']);
-        $location_state = htmlentities($row['location_state']);
-        $location_zip = htmlentities($row['location_zip']);
-        $location_country = htmlentities($row['location_country']);
+        $location_name = nullable_htmlentities($row['location_name']);
+        $location_address = nullable_htmlentities($row['location_address']);
+        $location_city = nullable_htmlentities($row['location_city']);
+        $location_state = nullable_htmlentities($row['location_state']);
+        $location_zip = nullable_htmlentities($row['location_zip']);
+        $location_country = nullable_htmlentities($row['location_country']);
         $location_phone = formatPhoneNumber($row['location_phone']);
 
         //Client Tags
@@ -64,9 +64,9 @@ if (isset($_GET['client_id'])) {
         while ($row = mysqli_fetch_array($sql_client_tags)) {
 
             $client_tag_id = intval($row['tag_id']);
-            $client_tag_name = htmlentities($row['tag_name']);
-            $client_tag_color = htmlentities($row['tag_color']);
-            $client_tag_icon = htmlentities($row['tag_icon']);
+            $client_tag_name = nullable_htmlentities($row['tag_name']);
+            $client_tag_color = nullable_htmlentities($row['tag_color']);
+            $client_tag_icon = nullable_htmlentities($row['tag_icon']);
             if (empty($client_tag_icon)) {
                 $client_tag_icon = "tag";
             }
diff --git a/invoice.php b/invoice.php
index d9bcb31c..ba6f5990 100644
--- a/invoice.php
+++ b/invoice.php
@@ -23,30 +23,30 @@ if (isset($_GET['invoice_id'])) {
 
     $row = mysqli_fetch_array($sql);
     $invoice_id = intval($row['invoice_id']);
-    $invoice_prefix = htmlentities($row['invoice_prefix']);
+    $invoice_prefix = nullable_htmlentities($row['invoice_prefix']);
     $invoice_number = intval($row['invoice_number']);
-    $invoice_scope = htmlentities($row['invoice_scope']);
-    $invoice_status = htmlentities($row['invoice_status']);
-    $invoice_date = htmlentities($row['invoice_date']);
-    $invoice_due = htmlentities($row['invoice_due']);
+    $invoice_scope = nullable_htmlentities($row['invoice_scope']);
+    $invoice_status = nullable_htmlentities($row['invoice_status']);
+    $invoice_date = nullable_htmlentities($row['invoice_date']);
+    $invoice_due = nullable_htmlentities($row['invoice_due']);
     $invoice_amount = floatval($row['invoice_amount']);
-    $invoice_currency_code = htmlentities($row['invoice_currency_code']);
-    $invoice_note = htmlentities($row['invoice_note']);
-    $invoice_url_key = htmlentities($row['invoice_url_key']);
-    $invoice_created_at = htmlentities($row['invoice_created_at']);
+    $invoice_currency_code = nullable_htmlentities($row['invoice_currency_code']);
+    $invoice_note = nullable_htmlentities($row['invoice_note']);
+    $invoice_url_key = nullable_htmlentities($row['invoice_url_key']);
+    $invoice_created_at = nullable_htmlentities($row['invoice_created_at']);
     $category_id = intval($row['invoice_category_id']);
     $client_id = intval($row['client_id']);
-    $client_name = htmlentities($row['client_name']);
-    $location_address = htmlentities($row['location_address']);
-    $location_city = htmlentities($row['location_city']);
-    $location_state = htmlentities($row['location_state']);
-    $location_zip = htmlentities($row['location_zip']);
-    $contact_email = htmlentities($row['contact_email']);
+    $client_name = nullable_htmlentities($row['client_name']);
+    $location_address = nullable_htmlentities($row['location_address']);
+    $location_city = nullable_htmlentities($row['location_city']);
+    $location_state = nullable_htmlentities($row['location_state']);
+    $location_zip = nullable_htmlentities($row['location_zip']);
+    $contact_email = nullable_htmlentities($row['contact_email']);
     $contact_phone = formatPhoneNumber($row['contact_phone']);
-    $contact_extension = htmlentities($row['contact_extension']);
+    $contact_extension = nullable_htmlentities($row['contact_extension']);
     $contact_mobile = formatPhoneNumber($row['contact_mobile']);
-    $client_website = htmlentities($row['client_website']);
-    $client_currency_code = htmlentities($row['client_currency_code']);
+    $client_website = nullable_htmlentities($row['client_website']);
+    $client_currency_code = nullable_htmlentities($row['client_currency_code']);
     $client_net_terms = intval($row['client_net_terms']);
     if ($client_net_terms == 0) {
         $client_net_terms = $config_default_net_terms;
@@ -55,16 +55,16 @@ if (isset($_GET['invoice_id'])) {
     $sql = mysqli_query($mysqli, "SELECT * FROM companies WHERE company_id = 1");
     $row = mysqli_fetch_array($sql);
     $company_id = intval($row['company_id']);
-    $company_name = htmlentities($row['company_name']);
-    $company_country = htmlentities($row['company_country']);
-    $company_address = htmlentities($row['company_address']);
-    $company_city = htmlentities($row['company_city']);
-    $company_state = htmlentities($row['company_state']);
-    $company_zip = htmlentities($row['company_zip']);
+    $company_name = nullable_htmlentities($row['company_name']);
+    $company_country = nullable_htmlentities($row['company_country']);
+    $company_address = nullable_htmlentities($row['company_address']);
+    $company_city = nullable_htmlentities($row['company_city']);
+    $company_state = nullable_htmlentities($row['company_state']);
+    $company_zip = nullable_htmlentities($row['company_zip']);
     $company_phone = formatPhoneNumber($row['company_phone']);
-    $company_email = htmlentities($row['company_email']);
-    $company_website = htmlentities($row['company_website']);
-    $company_logo = htmlentities($row['company_logo']);
+    $company_email = nullable_htmlentities($row['company_email']);
+    $company_website = nullable_htmlentities($row['company_website']);
+    $company_logo = nullable_htmlentities($row['company_logo']);
     if (!empty($company_logo)) {
         $company_logo_base64 = base64_encode(file_get_contents("uploads/settings/$company_logo"));
     }
@@ -273,13 +273,13 @@ if (isset($_GET['invoice_id'])) {
 
                                 while ($row = mysqli_fetch_array($sql_invoice_items)) {
                                     $item_id = intval($row['item_id']);
-                                    $item_name = htmlentities($row['item_name']);
-                                    $item_description = htmlentities($row['item_description']);
+                                    $item_name = nullable_htmlentities($row['item_name']);
+                                    $item_description = nullable_htmlentities($row['item_description']);
                                     $item_quantity = floatval($row['item_quantity']);
                                     $item_price = floatval($row['item_price']);
                                     $item_tax = floatval($row['item_tax']);
                                     $item_total = floatval($row['item_total']);
-                                    $item_created_at = htmlentities($row['item_created_at']);
+                                    $item_created_at = nullable_htmlentities($row['item_created_at']);
                                     $tax_id = intval($row['item_tax_id']);
                                     $total_tax = $item_tax + $total_tax;
                                     $sub_total = $item_price * $item_quantity + $sub_total;
@@ -336,7 +336,7 @@ if (isset($_GET['invoice_id'])) {
                                                 $taxes_sql = mysqli_query($mysqli, "SELECT * FROM taxes ORDER BY tax_name ASC");
                                                 while ($row = mysqli_fetch_array($taxes_sql)) {
                                                     $tax_id = intval($row['tax_id']);
-                                                    $tax_name = htmlentities($row['tax_name']);
+                                                    $tax_name = nullable_htmlentities($row['tax_name']);
                                                     $tax_percent = floatval($row['tax_percent']);
                                                     ?>
                                                     <option value="<?php echo $tax_id; ?>"><?php echo "$tax_name $tax_percent%"; ?></option>
@@ -406,7 +406,7 @@ if (isset($_GET['invoice_id'])) {
 
             <hr class="d-none d-print-block mt-5">
 
-            <div class="d-none d-print-block text-center"><?php echo nl2br(htmlentities($config_invoice_footer)); ?></div>
+            <div class="d-none d-print-block text-center"><?php echo nl2br(nullable_htmlentities($config_invoice_footer)); ?></div>
         </div>
     </div>
 
@@ -438,8 +438,8 @@ if (isset($_GET['invoice_id'])) {
 
                         while ($row = mysqli_fetch_array($sql_history)) {
                             $history_created_at = $row['history_created_at'];
-                            $history_status = htmlentities($row['history_status']);
-                            $history_description = htmlentities($row['history_description']);
+                            $history_status = nullable_htmlentities($row['history_status']);
+                            $history_description = nullable_htmlentities($row['history_description']);
 
                             ?>
                             <tr>
@@ -486,11 +486,11 @@ if (isset($_GET['invoice_id'])) {
 
                             while ($row = mysqli_fetch_array($sql_payments)) {
                                 $payment_id = intval($row['payment_id']);
-                                $payment_date = htmlentities($row['payment_date']);
+                                $payment_date = nullable_htmlentities($row['payment_date']);
                                 $payment_amount = floatval($row['payment_amount']);
-                                $payment_currency_code = htmlentities($row['payment_currency_code']);
-                                $payment_reference = htmlentities($row['payment_reference']);
-                                $account_name = htmlentities($row['account_name']);
+                                $payment_currency_code = nullable_htmlentities($row['payment_currency_code']);
+                                $payment_reference = nullable_htmlentities($row['payment_reference']);
+                                $account_name = nullable_htmlentities($row['account_name']);
 
                                 ?>
                                 <tr>
diff --git a/invoice_add_modal.php b/invoice_add_modal.php
index 16c45b1a..b6eccdd5 100644
--- a/invoice_add_modal.php
+++ b/invoice_add_modal.php
@@ -38,7 +38,7 @@
                                     $sql = mysqli_query($mysqli, "SELECT * FROM clients ORDER BY client_name ASC");
                                     while ($row = mysqli_fetch_array($sql)) {
                                         $client_id = intval($row['client_id']);
-                                        $client_name = htmlentities($row['client_name']);
+                                        $client_name = nullable_htmlentities($row['client_name']);
                                         ?>
                                         <option value="<?php echo $client_id; ?>"><?php echo "$client_name"; ?></option>
 
@@ -64,7 +64,7 @@
                                 $sql = mysqli_query($mysqli, "SELECT * FROM categories WHERE category_type = 'Income' AND category_archived_at IS NULL ORDER BY category_name ASC");
                                 while ($row = mysqli_fetch_array($sql)) {
                                     $category_id = intval($row['category_id']);
-                                    $category_name = htmlentities($row['category_name']);
+                                    $category_name = nullable_htmlentities($row['category_name']);
                                     ?>
                                     <option value="<?php echo $category_id; ?>"><?php echo $category_name; ?></option>
 
diff --git a/invoice_edit_modal.php b/invoice_edit_modal.php
index 3c54d4ab..8e8fa619 100644
--- a/invoice_edit_modal.php
+++ b/invoice_edit_modal.php
@@ -45,7 +45,7 @@
                 $sql_income_category = mysqli_query($mysqli, "SELECT * FROM categories WHERE category_type = 'Income' AND (category_archived_at > '$invoice_created_at' OR category_archived_at IS NULL) ORDER BY category_name ASC"); 
                 while ($row = mysqli_fetch_array($sql_income_category)) {
                   $category_id_select= intval($row['category_id']);
-                  $category_name_select = htmlentities($row['category_name']);
+                  $category_name_select = nullable_htmlentities($row['category_name']);
                 ?>
                 <option <?php if ($category_id == $category_id_select) { echo "selected"; } ?> value="<?php echo $category_id_select; ?>"><?php echo $category_name_select; ?></option>
                 
diff --git a/invoice_payment_add_modal.php b/invoice_payment_add_modal.php
index 0c86ca83..1d3cca43 100644
--- a/invoice_payment_add_modal.php
+++ b/invoice_payment_add_modal.php
@@ -57,7 +57,7 @@
                 $sql = mysqli_query($mysqli, "SELECT * FROM accounts WHERE account_archived_at IS NULL ORDER BY account_name ASC"); 
                 while ($row = mysqli_fetch_array($sql)) {
                   $account_id = intval($row['account_id']);
-                  $account_name = htmlentities($row['account_name']);
+                  $account_name = nullable_htmlentities($row['account_name']);
                   $opening_balance = floatval($row['opening_balance']);
                   
                   $sql_payments = mysqli_query($mysqli, "SELECT SUM(payment_amount) AS total_payments FROM payments WHERE payment_account_id = $account_id");
@@ -96,7 +96,7 @@
                 
                 $sql = mysqli_query($mysqli, "SELECT * FROM categories WHERE category_type = 'Payment Method' AND category_archived_at IS NULL ORDER BY category_name ASC"); 
                 while ($row = mysqli_fetch_array($sql)) {
-                  $category_name = htmlentities($row['category_name']);
+                  $category_name = nullable_htmlentities($row['category_name']);
                 ?>
                   <option <?php if ($config_default_payment_method == $category_name) { echo "selected"; } ?>><?php echo $category_name; ?></option>
                 
diff --git a/invoices.php b/invoices.php
index 78b38c37..f245a29d 100644
--- a/invoices.php
+++ b/invoices.php
@@ -155,11 +155,11 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
         <div class="card-body">
             <form class="mb-4" autocomplete="off">
-                <input type="hidden" name="status" value="<?php if (isset($_GET['status'])) { echo htmlentities($_GET['status']); } ?>">
+                <input type="hidden" name="status" value="<?php if (isset($_GET['status'])) { echo nullable_htmlentities($_GET['status']); } ?>">
                 <div class="row">
                     <div class="col-sm-4">
                         <div class="input-group">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) {echo stripslashes(htmlentities($q));} ?>" placeholder="Search Invoices">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) {echo stripslashes(nullable_htmlentities($q));} ?>" placeholder="Search Invoices">
                             <div class="input-group-append">
                                 <button class="btn btn-secondary" type="button" data-toggle="collapse" data-target="#advancedFilter"><i class="fas fa-filter"></i></button>
                                 <button class="btn btn-primary"><i class="fa fa-search"></i></button>
@@ -221,25 +221,25 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $invoice_id = intval($row['invoice_id']);
-                        $invoice_prefix = htmlentities($row['invoice_prefix']);
-                        $invoice_number = htmlentities($row['invoice_number']);
-                        $invoice_scope = htmlentities($row['invoice_scope']);
+                        $invoice_prefix = nullable_htmlentities($row['invoice_prefix']);
+                        $invoice_number = nullable_htmlentities($row['invoice_number']);
+                        $invoice_scope = nullable_htmlentities($row['invoice_scope']);
                         if (empty($invoice_scope)) {
                             $invoice_scope_display = "-";
                         } else {
                             $invoice_scope_display = $invoice_scope;
                         }
-                        $invoice_status = htmlentities($row['invoice_status']);
-                        $invoice_date = htmlentities($row['invoice_date']);
-                        $invoice_due = htmlentities($row['invoice_due']);
+                        $invoice_status = nullable_htmlentities($row['invoice_status']);
+                        $invoice_date = nullable_htmlentities($row['invoice_date']);
+                        $invoice_due = nullable_htmlentities($row['invoice_due']);
                         $invoice_amount = floatval($row['invoice_amount']);
-                        $invoice_currency_code = htmlentities($row['invoice_currency_code']);
-                        $invoice_created_at = htmlentities($row['invoice_created_at']);
+                        $invoice_currency_code = nullable_htmlentities($row['invoice_currency_code']);
+                        $invoice_created_at = nullable_htmlentities($row['invoice_created_at']);
                         $client_id = intval($row['client_id']);
-                        $client_name = htmlentities($row['client_name']);
+                        $client_name = nullable_htmlentities($row['client_name']);
                         $category_id = intval($row['category_id']);
-                        $category_name = htmlentities($row['category_name']);
-                        $client_currency_code = htmlentities($row['client_currency_code']);
+                        $category_name = nullable_htmlentities($row['category_name']);
+                        $client_currency_code = nullable_htmlentities($row['client_currency_code']);
                         $client_net_terms = intval($row['client_net_terms']);
                         if ($client_net_terms == 0) {
                             $client_net_terms = $config_default_net_terms;
diff --git a/item_edit_modal.php b/item_edit_modal.php
index 8f247fa9..140c61fe 100644
--- a/item_edit_modal.php
+++ b/item_edit_modal.php
@@ -80,7 +80,7 @@
                 $taxes_sql = mysqli_query($mysqli, "SELECT * FROM taxes WHERE (tax_archived_at > '$item_created_at' OR tax_archived_at IS NULL) ORDER BY tax_name ASC"); 
                 while ($row = mysqli_fetch_array($taxes_sql)) {
                   $tax_id_select = intval($row['tax_id']);
-                  $tax_name = htmlentities($row['tax_name']);
+                  $tax_name = nullable_htmlentities($row['tax_name']);
                   $tax_percent = floatval($row['tax_percent']);
                 ?>
                   <option <?php if ($tax_id_select == $tax_id) { echo "selected"; } ?> value="<?php echo $tax_id_select; ?>"><?php echo "$tax_name $tax_percent%"; ?></option>
diff --git a/login.php b/login.php
index d390dbdd..6e4c735a 100644
--- a/login.php
+++ b/login.php
@@ -228,7 +228,7 @@ if (isset($_POST['login'])) {
 <head>
     <meta charset="utf-8">
     <meta http-equiv="X-UA-Compatible" content="IE=edge">
-    <title><?php echo htmlentities($company_name); ?> | Login</title>
+    <title><?php echo nullable_htmlentities($company_name); ?> | Login</title>
     <!-- Tell the browser to be responsive to screen width -->
     <meta name="viewport" content="width=device-width, initial-scale=1">
     <meta name="robots" content="noindex">
@@ -244,7 +244,7 @@ if (isset($_POST['login'])) {
 <div class="login-box">
     <div class="login-logo">
         <?php if (!empty($company_logo)) { ?>
-            <img alt="<?=htmlentities($company_name)?> logo" height="110" width="380" class="img-fluid" src="<?php echo "uploads/settings/$company_logo"; ?>">
+            <img alt="<?=nullable_htmlentities($company_name)?> logo" height="110" width="380" class="img-fluid" src="<?php echo "uploads/settings/$company_logo"; ?>">
         <?php } else { ?>
             <b>IT</b>Flow
         <?php } ?>
diff --git a/logs.php b/logs.php
index 88e8d19b..b9c0622f 100644
--- a/logs.php
+++ b/logs.php
@@ -32,7 +32,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                 <div class="row">
                     <div class="col-sm-4">
                         <div class="input-group">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search audit logs">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search audit logs">
                             <div class="input-group-append">
                                 <button class="btn btn-secondary" type="button" data-toggle="collapse" data-target="#advancedFilter"><i class="fas fa-filter"></i></button>
                                 <button class="btn btn-primary"><i class="fa fa-search"></i></button>
@@ -61,13 +61,13 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                         <div class="col-md-2">
                             <div class="form-group">
                                 <label>Date From</label>
-                                <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo htmlentities($dtf); ?>">
+                                <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo nullable_htmlentities($dtf); ?>">
                             </div>
                         </div>
                         <div class="col-md-2">
                             <div class="form-group">
                                 <label>Date To</label>
-                                <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo htmlentities($dtt); ?>">
+                                <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo nullable_htmlentities($dtt); ?>">
                             </div>
                         </div>
                     </div>
@@ -94,22 +94,22 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $log_id = intval($row['log_id']);
-                        $log_type = htmlentities($row['log_type']);
-                        $log_action = htmlentities($row['log_action']);
-                        $log_description = htmlentities($row['log_description']);
-                        $log_ip = htmlentities($row['log_ip']);
-                        $log_user_agent = htmlentities($row['log_user_agent']);
+                        $log_type = nullable_htmlentities($row['log_type']);
+                        $log_action = nullable_htmlentities($row['log_action']);
+                        $log_description = nullable_htmlentities($row['log_description']);
+                        $log_ip = nullable_htmlentities($row['log_ip']);
+                        $log_user_agent = nullable_htmlentities($row['log_user_agent']);
                         $log_user_os = getOS($log_user_agent);
                         $log_user_browser = getWebBrowser($log_user_agent);
-                        $log_created_at = htmlentities($row['log_created_at']);
+                        $log_created_at = nullable_htmlentities($row['log_created_at']);
                         $user_id = intval($row['user_id']);
-                        $user_name = htmlentities($row['user_name']);
+                        $user_name = nullable_htmlentities($row['user_name']);
                         if (empty($user_name)) {
                             $user_name_display = "-";
                         } else {
                             $user_name_display = $user_name;
                         }
-                        $client_name = htmlentities($row['client_name']);
+                        $client_name = nullable_htmlentities($row['client_name']);
                         $client_id = intval($row['client_id']);
                         if (empty($client_name)) {
                             $client_name_display = "-";
diff --git a/notifications.php b/notifications.php
index 1aa0d17f..b92c17ec 100644
--- a/notifications.php
+++ b/notifications.php
@@ -34,10 +34,10 @@ $sql = mysqli_query($mysqli, "SELECT * FROM notifications LEFT JOIN clients ON n
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $notification_id = intval($row['notification_id']);
-                        $notification_type = htmlentities($row['notification_type']);
-                        $notification = htmlentities($row['notification']);
-                        $notification_timestamp = htmlentities($row['notification_timestamp']);
-                        $client_name = htmlentities($row['client_name']);
+                        $notification_type = nullable_htmlentities($row['notification_type']);
+                        $notification = nullable_htmlentities($row['notification']);
+                        $notification_timestamp = nullable_htmlentities($row['notification_timestamp']);
+                        $client_name = nullable_htmlentities($row['client_name']);
                         $client_id = intval($row['client_id']);
                         if (empty($client_name)) {
                             $client_name_display = "-";
diff --git a/notifications_dismissed.php b/notifications_dismissed.php
index 7d5db7ff..b6a1dded 100644
--- a/notifications_dismissed.php
+++ b/notifications_dismissed.php
@@ -36,7 +36,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                 <div class="row">
                     <div class="col-sm-4">
                         <div class="input-group">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Dismissed Notifications">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Dismissed Notifications">
                             <div class="input-group-append">
                                 <button class="btn btn-primary"><i class="fa fa-search"></i></button>
                             </div>
@@ -51,13 +51,13 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                         <div class="col-md-2">
                             <div class="form-group">
                                 <label>Date From</label>
-                                <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo htmlentities($dtf); ?>">
+                                <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo nullable_htmlentities($dtf); ?>">
                             </div>
                         </div>
                         <div class="col-md-2">
                             <div class="form-group">
                                 <label>Date To</label>
-                                <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo htmlentities($dtt); ?>">
+                                <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo nullable_htmlentities($dtt); ?>">
                             </div>
                         </div>
                     </div>
@@ -123,12 +123,12 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                     $notification_id = intval($row['notification_id']);
-                    $notification_timestamp = htmlentities($row['notification_timestamp']);
-                    $notification_type = htmlentities($row['notification_type']);
-                    $notification = htmlentities($row['notification']);
-                    $notification_dismissed_at = htmlentities($row['notification_dismissed_at']);
-                    $user_name = htmlentities($row['user_name']);
-                    $client_name = htmlentities($row['client_name']);
+                    $notification_timestamp = nullable_htmlentities($row['notification_timestamp']);
+                    $notification_type = nullable_htmlentities($row['notification_type']);
+                    $notification = nullable_htmlentities($row['notification']);
+                    $notification_dismissed_at = nullable_htmlentities($row['notification_dismissed_at']);
+                    $user_name = nullable_htmlentities($row['user_name']);
+                    $client_name = nullable_htmlentities($row['client_name']);
                     $client_id = intval($row['client_id']);
                     if (empty($client_name)) {
                         $client_name_display = "-";
diff --git a/payments.php b/payments.php
index f9128f48..38de9cd8 100644
--- a/payments.php
+++ b/payments.php
@@ -34,7 +34,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                 <div class="row">
                     <div class="col-sm-4">
                         <div class="input-group">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) {echo stripslashes(htmlentities($q));} ?>" placeholder="Search Payments">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) {echo stripslashes(nullable_htmlentities($q));} ?>" placeholder="Search Payments">
                             <div class="input-group-append">
                                 <button class="btn btn-secondary" type="button" data-toggle="collapse" data-target="#advancedFilter"><i class="fas fa-filter"></i></button>
                                 <button class="btn btn-primary"><i class="fa fa-search"></i></button>
@@ -63,13 +63,13 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                         <div class="col-md-2">
                             <div class="form-group">
                                 <label>Date From</label>
-                                <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo htmlentities($dtf); ?>">
+                                <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo nullable_htmlentities($dtf); ?>">
                             </div>
                         </div>
                         <div class="col-md-2">
                             <div class="form-group">
                                 <label>Date To</label>
-                                <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo htmlentities($dtt); ?>">
+                                <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo nullable_htmlentities($dtt); ?>">
                             </div>
                         </div>
                     </div>
@@ -95,23 +95,23 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $invoice_id = intval($row['invoice_id']);
-                        $invoice_prefix = htmlentities($row['invoice_prefix']);
+                        $invoice_prefix = nullable_htmlentities($row['invoice_prefix']);
                         $invoice_number = intval($row['invoice_number']);
-                        $invoice_status = htmlentities($row['invoice_status']);
-                        $invoice_date = htmlentities($row['invoice_date']);
-                        $payment_date = htmlentities($row['payment_date']);
-                        $payment_method = htmlentities($row['payment_method']);
+                        $invoice_status = nullable_htmlentities($row['invoice_status']);
+                        $invoice_date = nullable_htmlentities($row['invoice_date']);
+                        $payment_date = nullable_htmlentities($row['payment_date']);
+                        $payment_method = nullable_htmlentities($row['payment_method']);
                         $payment_amount = floatval($row['payment_amount']);
-                        $payment_currency_code = htmlentities($row['payment_currency_code']);
-                        $payment_reference = htmlentities($row['payment_reference']);
+                        $payment_currency_code = nullable_htmlentities($row['payment_currency_code']);
+                        $payment_reference = nullable_htmlentities($row['payment_reference']);
                         if (empty($payment_reference)) {
                             $payment_reference_display = "-";
                         } else {
                             $payment_reference_display = $payment_reference;
                         }
                         $client_id = intval($row['client_id']);
-                        $client_name = htmlentities($row['client_name']);
-                        $account_name = htmlentities($row['account_name']);
+                        $client_name = nullable_htmlentities($row['client_name']);
+                        $account_name = nullable_htmlentities($row['account_name']);
 
                         ?>
 
diff --git a/product_add_modal.php b/product_add_modal.php
index cc144d12..4b3a6366 100644
--- a/product_add_modal.php
+++ b/product_add_modal.php
@@ -33,7 +33,7 @@
                                 $sql = mysqli_query($mysqli, "SELECT * FROM categories WHERE category_type = 'Income' AND category_archived_at IS NULL");
                                 while ($row = mysqli_fetch_array($sql)) {
                                     $category_id = intval($row['category_id']);
-                                    $category_name = htmlentities($row['category_name']);
+                                    $category_name = nullable_htmlentities($row['category_name']);
                                     ?>
                                     <option value="<?php echo $category_id; ?>"><?php echo $category_name; ?></option>
 
@@ -74,7 +74,7 @@
                                         $taxes_sql = mysqli_query($mysqli, "SELECT * FROM taxes WHERE tax_archived_at IS NULL ORDER BY tax_name ASC");
                                         while ($row = mysqli_fetch_array($taxes_sql)) {
                                             $tax_id = intval($row['tax_id']);
-                                            $tax_name = htmlentities($row['tax_name']);
+                                            $tax_name = nullable_htmlentities($row['tax_name']);
                                             $tax_percent = floatval($row['tax_percent']);
                                             ?>
                                             <option value="<?php echo $tax_id; ?>"><?php echo "$tax_name $tax_percent%"; ?></option>
diff --git a/product_edit_modal.php b/product_edit_modal.php
index 790690cd..1ae32762 100644
--- a/product_edit_modal.php
+++ b/product_edit_modal.php
@@ -33,7 +33,7 @@
                                 $sql_select = mysqli_query($mysqli, "SELECT * FROM categories WHERE category_type = 'Income' AND (category_archived_at > '$product_created_at' OR category_archived_at IS NULL)");
                                 while ($row = mysqli_fetch_array($sql_select)) {
                                     $category_id_select = intval($row['category_id']);
-                                    $category_name_select = htmlentities($row['category_name']);
+                                    $category_name_select = nullable_htmlentities($row['category_name']);
                                     ?>
                                     <option <?php if ($category_id == $category_id_select) { echo "selected"; } ?> value="<?php echo $category_id_select; ?>"><?php echo $category_name_select; ?></option>
                                     <?php
@@ -73,7 +73,7 @@
                                         $taxes_sql = mysqli_query($mysqli, "SELECT * FROM taxes WHERE (tax_archived_at > '$product_created_at' OR tax_archived_at IS NULL) ORDER BY tax_name ASC");
                                         while ($row = mysqli_fetch_array($taxes_sql)) {
                                             $tax_id_select = intval($row['tax_id']);
-                                            $tax_name = htmlentities($row['tax_name']);
+                                            $tax_name = nullable_htmlentities($row['tax_name']);
                                             $tax_percent = floatval($row['tax_percent']);
                                             ?>
                                             <option <?php if ($tax_id_select == $product_tax_id) { echo "selected"; } ?> value="<?php echo $tax_id_select; ?>"><?php echo "$tax_name $tax_percent%"; ?></option>
diff --git a/products.php b/products.php
index be23c0b1..0afab36c 100644
--- a/products.php
+++ b/products.php
@@ -33,7 +33,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                 <div class="row">
                     <div class="col-sm-4">
                         <div class="input-group">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) {echo stripslashes(htmlentities($q));} ?>" placeholder="Search Products">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) {echo stripslashes(nullable_htmlentities($q));} ?>" placeholder="Search Products">
                             <div class="input-group-append">
                                 <button class="btn btn-primary"><i class="fa fa-search"></i></button>
                             </div>
@@ -58,18 +58,18 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $product_id = intval($row['product_id']);
-                        $product_name = htmlentities($row['product_name']);
-                        $product_description = htmlentities($row['product_description']);
+                        $product_name = nullable_htmlentities($row['product_name']);
+                        $product_description = nullable_htmlentities($row['product_description']);
                         if (empty($product_description)) {
                             $product_description_display = "-";
                         } else {
                             $product_description_display = "<div style='white-space:pre-line'>$product_description</div>";
                         }
                         $product_price = floatval($row['product_price']);
-                        $product_currency_code = htmlentities($row['product_currency_code']);
-                        $product_created_at = htmlentities($row['product_created_at']);
+                        $product_currency_code = nullable_htmlentities($row['product_currency_code']);
+                        $product_created_at = nullable_htmlentities($row['product_created_at']);
                         $category_id = intval($row['category_id']);
-                        $category_name = htmlentities($row['category_name']);
+                        $category_name = nullable_htmlentities($row['category_name']);
                         $product_tax_id = intval($row['product_tax_id']);
 
                         ?>
diff --git a/quote.php b/quote.php
index 9d5cec86..57d9a3b9 100644
--- a/quote.php
+++ b/quote.php
@@ -22,29 +22,29 @@ if (isset($_GET['quote_id'])) {
 
     $row = mysqli_fetch_array($sql);
     $quote_id = intval($row['quote_id']);
-    $quote_prefix = htmlentities($row['quote_prefix']);
+    $quote_prefix = nullable_htmlentities($row['quote_prefix']);
     $quote_number = intval($row['quote_number']);
-    $quote_scope = htmlentities($row['quote_scope']);
-    $quote_status = htmlentities($row['quote_status']);
-    $quote_date = htmlentities($row['quote_date']);
+    $quote_scope = nullable_htmlentities($row['quote_scope']);
+    $quote_status = nullable_htmlentities($row['quote_status']);
+    $quote_date = nullable_htmlentities($row['quote_date']);
     $quote_amount = floatval($row['quote_amount']);
-    $quote_currency_code = htmlentities($row['quote_currency_code']);
-    $quote_note = htmlentities($row['quote_note']);
-    $quote_url_key = htmlentities($row['quote_url_key']);
-    $quote_created_at = htmlentities($row['quote_created_at']);
+    $quote_currency_code = nullable_htmlentities($row['quote_currency_code']);
+    $quote_note = nullable_htmlentities($row['quote_note']);
+    $quote_url_key = nullable_htmlentities($row['quote_url_key']);
+    $quote_created_at = nullable_htmlentities($row['quote_created_at']);
     $category_id = intval($row['quote_category_id']);
     $client_id = intval($row['client_id']);
-    $client_name = htmlentities($row['client_name']);
-    $location_address = htmlentities($row['location_address']);
-    $location_city = htmlentities($row['location_city']);
-    $location_state = htmlentities($row['location_state']);
-    $location_zip = htmlentities($row['location_zip']);
-    $contact_email = htmlentities($row['contact_email']);
+    $client_name = nullable_htmlentities($row['client_name']);
+    $location_address = nullable_htmlentities($row['location_address']);
+    $location_city = nullable_htmlentities($row['location_city']);
+    $location_state = nullable_htmlentities($row['location_state']);
+    $location_zip = nullable_htmlentities($row['location_zip']);
+    $contact_email = nullable_htmlentities($row['contact_email']);
     $contact_phone = formatPhoneNumber($row['contact_phone']);
-    $contact_extension = htmlentities($row['contact_extension']);
+    $contact_extension = nullable_htmlentities($row['contact_extension']);
     $contact_mobile = formatPhoneNumber($row['contact_mobile']);
-    $client_website = htmlentities($row['client_website']);
-    $client_currency_code = htmlentities($row['client_currency_code']);
+    $client_website = nullable_htmlentities($row['client_website']);
+    $client_currency_code = nullable_htmlentities($row['client_currency_code']);
     $client_net_terms = intval($row['client_net_terms']);
     if ($client_net_terms == 0) {
         $client_net_terms = $config_default_net_terms;
@@ -54,16 +54,16 @@ if (isset($_GET['quote_id'])) {
     $row = mysqli_fetch_array($sql);
 
     $company_id = intval($row['company_id']);
-    $company_name = htmlentities($row['company_name']);
-    $company_country = htmlentities($row['company_country']);
-    $company_address = htmlentities($row['company_address']);
-    $company_city = htmlentities($row['company_city']);
-    $company_state = htmlentities($row['company_state']);
-    $company_zip = htmlentities($row['company_zip']);
+    $company_name = nullable_htmlentities($row['company_name']);
+    $company_country = nullable_htmlentities($row['company_country']);
+    $company_address = nullable_htmlentities($row['company_address']);
+    $company_city = nullable_htmlentities($row['company_city']);
+    $company_state = nullable_htmlentities($row['company_state']);
+    $company_zip = nullable_htmlentities($row['company_zip']);
     $company_phone = formatPhoneNumber($row['company_phone']);
-    $company_email = htmlentities($row['company_email']);
-    $company_website = htmlentities($row['company_website']);
-    $company_logo = htmlentities($row['company_logo']);
+    $company_email = nullable_htmlentities($row['company_email']);
+    $company_website = nullable_htmlentities($row['company_website']);
+    $company_logo = nullable_htmlentities($row['company_logo']);
     if (!empty($company_logo)) {
         $company_logo_base64 = base64_encode(file_get_contents("uploads/settings/$company_logo"));
     }
@@ -260,13 +260,13 @@ if (isset($_GET['quote_id'])) {
 
                                 while ($row = mysqli_fetch_array($sql_items)) {
                                     $item_id = intval($row['item_id']);
-                                    $item_name = htmlentities($row['item_name']);
-                                    $item_description = htmlentities($row['item_description']);
+                                    $item_name = nullable_htmlentities($row['item_name']);
+                                    $item_description = nullable_htmlentities($row['item_description']);
                                     $item_quantity = floatval($row['item_quantity']);
                                     $item_price = floatval($row['item_price']);
                                     $item_tax = floatval($row['item_tax']);
                                     $item_total = floatval($row['item_total']);
-                                    $item_created_at = htmlentities($row['item_created_at']);
+                                    $item_created_at = nullable_htmlentities($row['item_created_at']);
                                     $tax_id = intval($row['item_tax_id']);
                                     $total_tax = $item_tax + $total_tax;
                                     $sub_total = $item_price * $item_quantity + $sub_total;
@@ -326,7 +326,7 @@ if (isset($_GET['quote_id'])) {
                                                 $taxes_sql = mysqli_query($mysqli, "SELECT tax_id, tax_name, tax_percent FROM taxes ORDER BY tax_name ASC");
                                                 while ($row = mysqli_fetch_array($taxes_sql)) {
                                                     $tax_id = intval($row['tax_id']);
-                                                    $tax_name = htmlentities($row['tax_name']);
+                                                    $tax_name = nullable_htmlentities($row['tax_name']);
                                                     $tax_percent = floatval($row['tax_percent']);
                                                     ?>
                                                     <option value="<?php echo $tax_id; ?>"><?php echo "$tax_name $tax_percent%"; ?></option>
@@ -391,7 +391,7 @@ if (isset($_GET['quote_id'])) {
 
             <hr class="d-none d-print-block mt-5">
 
-            <div class="d-none d-print-block text-center"><?php echo nl2br(htmlentities($config_quote_footer)); ?></div>
+            <div class="d-none d-print-block text-center"><?php echo nl2br(nullable_htmlentities($config_quote_footer)); ?></div>
         </div>
     </div>
 
@@ -422,9 +422,9 @@ if (isset($_GET['quote_id'])) {
                         <?php
 
                         while ($row = mysqli_fetch_array($sql_history)) {
-                            $history_created_at = htmlentities($row['history_created_at']);
-                            $history_status = htmlentities($row['history_status']);
-                            $history_description = htmlentities($row['history_description']);
+                            $history_created_at = nullable_htmlentities($row['history_created_at']);
+                            $history_status = nullable_htmlentities($row['history_status']);
+                            $history_description = nullable_htmlentities($row['history_description']);
 
                             ?>
                             <tr>
diff --git a/quote_add_modal.php b/quote_add_modal.php
index d766f4b8..060ce809 100644
--- a/quote_add_modal.php
+++ b/quote_add_modal.php
@@ -38,7 +38,7 @@
                                     $sql = mysqli_query($mysqli, "SELECT * FROM clients ORDER BY client_name ASC");
                                     while ($row = mysqli_fetch_array($sql)) {
                                         $client_id = intval($row['client_id']);
-                                        $client_name = htmlentities($row['client_name']);
+                                        $client_name = nullable_htmlentities($row['client_name']);
                                         ?>
                                         <option value="<?php echo $client_id; ?>"><?php echo $client_name; ?></option>
                                     <?php } ?>
@@ -62,7 +62,7 @@
                                 $sql = mysqli_query($mysqli, "SELECT * FROM categories WHERE category_type = 'Income' AND category_archived_at IS NULL ORDER BY category_name ASC");
                                 while ($row = mysqli_fetch_array($sql)) {
                                     $category_id = intval($row['category_id']);
-                                    $category_name = htmlentities($row['category_name']);
+                                    $category_name = nullable_htmlentities($row['category_name']);
                                     ?>
                                     <option value="<?php echo $category_id; ?>"><?php echo $category_name; ?></option>
 
diff --git a/quotes.php b/quotes.php
index b910a61c..56dc9769 100644
--- a/quotes.php
+++ b/quotes.php
@@ -35,7 +35,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                 <div class="row">
                     <div class="col-sm-4">
                         <div class="input-group">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Quotes">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Quotes">
                             <div class="input-group-append">
                                 <button class="btn btn-secondary" type="button" data-toggle="collapse" data-target="#advancedFilter"><i class="fas fa-filter"></i></button>
                                 <button class="btn btn-primary"><i class="fa fa-search"></i></button>
@@ -64,13 +64,13 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                         <div class="col-md-2">
                             <div class="form-group">
                                 <label>Date From</label>
-                                <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo htmlentities($dtf); ?>">
+                                <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo nullable_htmlentities($dtf); ?>">
                             </div>
                         </div>
                         <div class="col-md-2">
                             <div class="form-group">
                                 <label>Date To</label>
-                                <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo htmlentities($dtt); ?>">
+                                <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo nullable_htmlentities($dtt); ?>">
                             </div>
                         </div>
                     </div>
@@ -96,24 +96,24 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $quote_id = intval($row['quote_id']);
-                        $quote_prefix = htmlentities($row['quote_prefix']);
+                        $quote_prefix = nullable_htmlentities($row['quote_prefix']);
                         $quote_number = intval($row['quote_number']);
-                        $quote_scope = htmlentities($row['quote_scope']);
+                        $quote_scope = nullable_htmlentities($row['quote_scope']);
                         if (empty($quote_scope)) {
                             $quote_scope_display = "-";
                         } else {
                             $quote_scope_display = $quote_scope;
                         }
-                        $quote_status = htmlentities($row['quote_status']);
-                        $quote_date = htmlentities($row['quote_date']);
+                        $quote_status = nullable_htmlentities($row['quote_status']);
+                        $quote_date = nullable_htmlentities($row['quote_date']);
                         $quote_amount = floatval($row['quote_amount']);
-                        $quote_currency_code = htmlentities($row['quote_currency_code']);
-                        $quote_created_at = htmlentities($row['quote_created_at']);
+                        $quote_currency_code = nullable_htmlentities($row['quote_currency_code']);
+                        $quote_created_at = nullable_htmlentities($row['quote_created_at']);
                         $client_id = intval($row['client_id']);
-                        $client_name = htmlentities($row['client_name']);
-                        $client_currency_code = htmlentities($row['client_currency_code']);
+                        $client_name = nullable_htmlentities($row['client_name']);
+                        $client_currency_code = nullable_htmlentities($row['client_currency_code']);
                         $category_id = intval($row['category_id']);
-                        $category_name = htmlentities($row['category_name']);
+                        $category_name = nullable_htmlentities($row['category_name']);
                         $client_net_terms = intval($row['client_net_terms']);
                         if ($client_net_terms == 0) {
                             $client_net_terms = $config_default_net_terms;
diff --git a/recurring_invoice.php b/recurring_invoice.php
index acc6bc58..f797f306 100644
--- a/recurring_invoice.php
+++ b/recurring_invoice.php
@@ -15,33 +15,33 @@ if (isset($_GET['recurring_id'])) {
     );
 
     $row = mysqli_fetch_array($sql);
-    $recurring_prefix = htmlentities($row['recurring_prefix']);
+    $recurring_prefix = nullable_htmlentities($row['recurring_prefix']);
     $recurring_number = intval($row['recurring_number']);
-    $recurring_scope = htmlentities($row['recurring_scope']);
-    $recurring_frequency = htmlentities($row['recurring_frequency']);
-    $recurring_status = htmlentities($row['recurring_status']);
+    $recurring_scope = nullable_htmlentities($row['recurring_scope']);
+    $recurring_frequency = nullable_htmlentities($row['recurring_frequency']);
+    $recurring_status = nullable_htmlentities($row['recurring_status']);
     $recurring_created_at = date('Y-m-d', strtotime($row['recurring_created_at']));
-    $recurring_last_sent = htmlentities($row['recurring_last_sent']);
+    $recurring_last_sent = nullable_htmlentities($row['recurring_last_sent']);
     if ($recurring_last_sent == 0) {
         $recurring_last_sent = '-';
     }
-    $recurring_next_date = htmlentities($row['recurring_next_date']);
+    $recurring_next_date = nullable_htmlentities($row['recurring_next_date']);
     $recurring_amount = floatval($row['recurring_amount']);
-    $recurring_currency_code = htmlentities($row['recurring_currency_code']);
-    $recurring_note = htmlentities($row['recurring_note']);
+    $recurring_currency_code = nullable_htmlentities($row['recurring_currency_code']);
+    $recurring_note = nullable_htmlentities($row['recurring_note']);
     $category_id = intval($row['recurring_category_id']);
     $client_id = intval($row['client_id']);
-    $client_name = htmlentities($row['client_name']);
-    $location_address = htmlentities($row['location_address']);
-    $location_city = htmlentities($row['location_city']);
-    $location_state = htmlentities($row['location_state']);
-    $location_zip = htmlentities($row['location_zip']);
-    $contact_email = htmlentities($row['contact_email']);
+    $client_name = nullable_htmlentities($row['client_name']);
+    $location_address = nullable_htmlentities($row['location_address']);
+    $location_city = nullable_htmlentities($row['location_city']);
+    $location_state = nullable_htmlentities($row['location_state']);
+    $location_zip = nullable_htmlentities($row['location_zip']);
+    $contact_email = nullable_htmlentities($row['contact_email']);
     $contact_phone = formatPhoneNumber($row['contact_phone']);
-    $contact_extension = htmlentities($row['contact_extension']);
+    $contact_extension = nullable_htmlentities($row['contact_extension']);
     $contact_mobile = formatPhoneNumber($row['contact_mobile']);
-    $client_website = htmlentities($row['client_website']);
-    $client_currency_code = htmlentities($row['client_currency_code']);
+    $client_website = nullable_htmlentities($row['client_website']);
+    $client_currency_code = nullable_htmlentities($row['client_currency_code']);
     $client_net_terms = intval($row['client_net_terms']);
 
     if ($recurring_status == 1) {
@@ -56,16 +56,16 @@ if (isset($_GET['recurring_id'])) {
     $row = mysqli_fetch_array($sql);
 
     $company_id = intval($row['company_id']);
-    $company_name = htmlentities($row['company_name']);
-    $company_country = htmlentities($row['company_country']);
-    $company_address = htmlentities($row['company_address']);
-    $company_city = htmlentities($row['company_city']);
-    $company_state = htmlentities($row['company_state']);
-    $company_zip = htmlentities($row['company_zip']);
+    $company_name = nullable_htmlentities($row['company_name']);
+    $company_country = nullable_htmlentities($row['company_country']);
+    $company_address = nullable_htmlentities($row['company_address']);
+    $company_city = nullable_htmlentities($row['company_city']);
+    $company_state = nullable_htmlentities($row['company_state']);
+    $company_zip = nullable_htmlentities($row['company_zip']);
     $company_phone = formatPhoneNumber($row['company_phone']);
-    $company_email = htmlentities($row['company_email']);
-    $company_website = htmlentities($row['company_website']);
-    $company_logo = htmlentities($row['company_logo']);
+    $company_email = nullable_htmlentities($row['company_email']);
+    $company_website = nullable_htmlentities($row['company_website']);
+    $company_logo = nullable_htmlentities($row['company_logo']);
 
     $sql_history = mysqli_query($mysqli, "SELECT * FROM history WHERE history_recurring_id = $recurring_id ORDER BY history_id DESC");
 
@@ -205,13 +205,13 @@ if (isset($_GET['recurring_id'])) {
 
                                 while ($row = mysqli_fetch_array($sql_items)) {
                                     $item_id = intval($row['item_id']);
-                                    $item_name = htmlentities($row['item_name']);
-                                    $item_description = htmlentities($row['item_description']);
+                                    $item_name = nullable_htmlentities($row['item_name']);
+                                    $item_description = nullable_htmlentities($row['item_description']);
                                     $item_quantity = floatval($row['item_quantity']);
                                     $item_price = floatval($row['item_price']);
                                     $item_tax = floatval($row['item_tax']);
                                     $item_total = floatval($row['item_total']);
-                                    $item_created_at = htmlentities($row['item_created_at']);
+                                    $item_created_at = nullable_htmlentities($row['item_created_at']);
                                     $tax_id = intval($row['item_tax_id']);
                                     $total_tax = $item_tax + $total_tax;
                                     $sub_total = $item_price * $item_quantity + $sub_total;
@@ -263,7 +263,7 @@ if (isset($_GET['recurring_id'])) {
                                                     $taxes_sql = mysqli_query($mysqli, "SELECT tax_id, tax_name, tax_percent FROM taxes ORDER BY tax_name ASC");
                                                     while ($row = mysqli_fetch_array($taxes_sql)) {
                                                         $tax_id = intval($row['tax_id']);
-                                                        $tax_name = htmlentities($row['tax_name']);
+                                                        $tax_name = nullable_htmlentities($row['tax_name']);
                                                         $tax_percent = floatval($row['tax_percent']);
                                                         ?>
                                                         <option value="<?php echo $tax_id; ?>"><?php echo "$tax_name $tax_percent%"; ?></option>
@@ -353,9 +353,9 @@ if (isset($_GET['recurring_id'])) {
                         <?php
 
                         while ($row = mysqli_fetch_array($sql_history)) {
-                            $history_created_at = htmlentities($row['history_created_at']);
-                            $history_status = htmlentities($row['history_status']);
-                            $history_description = htmlentities($row['history_description']);
+                            $history_created_at = nullable_htmlentities($row['history_created_at']);
+                            $history_status = nullable_htmlentities($row['history_status']);
+                            $history_description = nullable_htmlentities($row['history_description']);
 
                             ?>
                             <tr>
diff --git a/recurring_invoice_add_modal.php b/recurring_invoice_add_modal.php
index 50cd90b1..b31e0db3 100644
--- a/recurring_invoice_add_modal.php
+++ b/recurring_invoice_add_modal.php
@@ -38,7 +38,7 @@
                 $sql = mysqli_query($mysqli, "SELECT * FROM clients ORDER BY client_name ASC"); 
                 while ($row = mysqli_fetch_array($sql)) {
                   $client_id = intval($row['client_id']);
-                  $client_name = htmlentities($row['client_name']);
+                  $client_name = nullable_htmlentities($row['client_name']);
                 ?>
                   <option value="<?php echo $client_id; ?>"><?php echo "$client_name"; ?></option>
                 
@@ -89,7 +89,7 @@
                 $sql = mysqli_query($mysqli, "SELECT * FROM categories WHERE category_type = 'Income' AND category_archived_at IS NULL ORDER BY category_name ASC"); 
                 while ($row = mysqli_fetch_array($sql)) {
                   $category_id = intval($row['category_id']);
-                  $category_name = htmlentities($row['category_name']);
+                  $category_name = nullable_htmlentities($row['category_name']);
                 ?>
                 <option value="<?php echo $category_id; ?>"><?php echo $category_name; ?></option>
                 
diff --git a/recurring_invoice_edit_modal.php b/recurring_invoice_edit_modal.php
index 9e314f70..3cc6cf1a 100644
--- a/recurring_invoice_edit_modal.php
+++ b/recurring_invoice_edit_modal.php
@@ -60,7 +60,7 @@
                 $sql_income_category = mysqli_query($mysqli, "SELECT * FROM categories WHERE category_type = 'Income' AND (category_archived_at > '$recurring_created_at' OR category_archived_at IS NULL) ORDER BY category_name ASC"); 
                 while ($row = mysqli_fetch_array($sql_income_category)) {
                   $category_id_select= intval($row['category_id']);
-                  $category_name_select = htmlentities($row['category_name']);
+                  $category_name_select = nullable_htmlentities($row['category_name']);
                 ?>
                 <option <?php if ($category_id == $category_id_select) { ?> selected <?php } ?> value="<?php echo $category_id_select; ?>"><?php echo $category_name_select; ?></option>
                 
diff --git a/recurring_invoices.php b/recurring_invoices.php
index 66849e45..f6fa167f 100644
--- a/recurring_invoices.php
+++ b/recurring_invoices.php
@@ -35,7 +35,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
             <div class="row">
                 <div class="col-sm-4">
                     <div class="input-group">
-                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) {echo strip_tags(htmlentities($q));} ?>" placeholder="Search Recurring Invoices">
+                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) {echo strip_tags(nullable_htmlentities($q));} ?>" placeholder="Search Recurring Invoices">
                         <div class="input-group-append">
                             <button class="btn btn-secondary" type="button" data-toggle="collapse" data-target="#advancedFilter"><i class="fas fa-filter"></i></button>
                             <button class="btn btn-primary"><i class="fa fa-search"></i></button>
@@ -64,13 +64,13 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                     <div class="col-md-2">
                         <div class="form-group">
                             <label>Date From</label>
-                            <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo htmlentities($dtf); ?>">
+                            <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo nullable_htmlentities($dtf); ?>">
                         </div>
                     </div>
                     <div class="col-md-2">
                         <div class="form-group">
                             <label>Date To</label>
-                            <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo htmlentities($dtt); ?>">
+                            <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo nullable_htmlentities($dtt); ?>">
                         </div>
                     </div>
                 </div>
@@ -99,24 +99,24 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 while ($row = mysqli_fetch_array($sql)) {
                     $recurring_id = intval($row['recurring_id']);
-                    $recurring_prefix = htmlentities($row['recurring_prefix']);
+                    $recurring_prefix = nullable_htmlentities($row['recurring_prefix']);
                     $recurring_number = intval($row['recurring_number']);
-                    $recurring_scope = htmlentities($row['recurring_scope']);
-                    $recurring_frequency = htmlentities($row['recurring_frequency']);
-                    $recurring_status = htmlentities($row['recurring_status']);
+                    $recurring_scope = nullable_htmlentities($row['recurring_scope']);
+                    $recurring_frequency = nullable_htmlentities($row['recurring_frequency']);
+                    $recurring_status = nullable_htmlentities($row['recurring_status']);
                     $recurring_last_sent = $row['recurring_last_sent'];
                     if ($recurring_last_sent == 0) {
                         $recurring_last_sent = "-";
                     }
-                    $recurring_next_date = htmlentities($row['recurring_next_date']);
+                    $recurring_next_date = nullable_htmlentities($row['recurring_next_date']);
                     $recurring_amount = floatval($row['recurring_amount']);
-                    $recurring_currency_code = htmlentities($row['recurring_currency_code']);
-                    $recurring_created_at = htmlentities($row['recurring_created_at']);
+                    $recurring_currency_code = nullable_htmlentities($row['recurring_currency_code']);
+                    $recurring_created_at = nullable_htmlentities($row['recurring_created_at']);
                     $client_id = intval($row['client_id']);
-                    $client_name = htmlentities($row['client_name']);
-                    $client_currency_code = htmlentities($row['client_currency_code']);
+                    $client_name = nullable_htmlentities($row['client_name']);
+                    $client_currency_code = nullable_htmlentities($row['client_currency_code']);
                     $category_id = intval($row['category_id']);
-                    $category_name = htmlentities($row['category_name']);
+                    $category_name = nullable_htmlentities($row['category_name']);
                     if ($recurring_status == 1) {
                         $status = "Active";
                         $status_badge_color = "success";
diff --git a/report_expense_by_vendor.php b/report_expense_by_vendor.php
index 43ca3eb5..6a397b27 100644
--- a/report_expense_by_vendor.php
+++ b/report_expense_by_vendor.php
@@ -54,7 +54,7 @@ $sql_vendors = mysqli_query($mysqli, "SELECT * FROM vendors WHERE vendor_templat
                 <?php
                 while ($row = mysqli_fetch_array($sql_vendors)) {
                     $vendor_id = intval($row['vendor_id']);
-                    $vendor_name = htmlentities($row['vendor_name']);
+                    $vendor_name = nullable_htmlentities($row['vendor_name']);
 
                     $sql_amount_paid = mysqli_query($mysqli, "SELECT SUM(expense_amount) AS amount_paid FROM expenses WHERE YEAR(expense_date) = $year AND expense_vendor_id = $vendor_id");
                     $row = mysqli_fetch_array($sql_amount_paid);
diff --git a/report_expense_summary.php b/report_expense_summary.php
index e9e9aa9d..216d0ca5 100644
--- a/report_expense_summary.php
+++ b/report_expense_summary.php
@@ -63,7 +63,7 @@ $sql_categories = mysqli_query($mysqli, "SELECT * FROM categories WHERE category
                 <?php
                 while ($row = mysqli_fetch_array($sql_categories)) {
                     $category_id = intval($row['category_id']);
-                    $category_name = htmlentities($row['category_name']);
+                    $category_name = nullable_htmlentities($row['category_name']);
                     ?>
 
                     <tr>
diff --git a/report_income_by_client.php b/report_income_by_client.php
index c98a2496..5606eca9 100644
--- a/report_income_by_client.php
+++ b/report_income_by_client.php
@@ -62,7 +62,7 @@ $sql_payment_years = mysqli_query($mysqli, "SELECT DISTINCT YEAR(payment_date) A
                 <?php
                 while ($row = mysqli_fetch_array($sql_clients)) {
                     $client_id = intval($row['client_id']);
-                    $client_name = htmlentities($row['client_name']);
+                    $client_name = nullable_htmlentities($row['client_name']);
                     $amount_paid = floatval($row['amount_paid']);
 
                     ?>
diff --git a/report_income_summary.php b/report_income_summary.php
index 01006063..43052d85 100644
--- a/report_income_summary.php
+++ b/report_income_summary.php
@@ -67,7 +67,7 @@ $sql_categories = mysqli_query($mysqli, "SELECT * FROM categories WHERE category
                 <?php
                 while ($row = mysqli_fetch_array($sql_categories)) {
                     $category_id = intval($row['category_id']);
-                    $category_name = htmlentities($row['category_name']);
+                    $category_name = nullable_htmlentities($row['category_name']);
 
                     ?>
 
diff --git a/report_profit_loss.php b/report_profit_loss.php
index 317b59fb..267d030a 100644
--- a/report_profit_loss.php
+++ b/report_profit_loss.php
@@ -66,7 +66,7 @@ $sql_categories_expense = mysqli_query($mysqli, "SELECT * FROM categories WHERE
                     <?php
                     while ($row = mysqli_fetch_array($sql_categories_income)) {
                         $category_id = intval($row['category_id']);
-                        $category_name = htmlentities($row['category_name']);
+                        $category_name = nullable_htmlentities($row['category_name']);
                         ?>
 
                         <tr>
@@ -273,7 +273,7 @@ $sql_categories_expense = mysqli_query($mysqli, "SELECT * FROM categories WHERE
                     <?php
                     while ($row = mysqli_fetch_array($sql_categories_expense)) {
                         $category_id = intval($row['category_id']);
-                        $category_name = htmlentities($row['category_name']);
+                        $category_name = nullable_htmlentities($row['category_name']);
                         ?>
 
                         <tr>
diff --git a/report_recurring_by_client.php b/report_recurring_by_client.php
index 2bc1f276..2f6978f2 100644
--- a/report_recurring_by_client.php
+++ b/report_recurring_by_client.php
@@ -38,7 +38,7 @@ $sql = mysqli_query($mysqli, "
 
                 while ($row = mysqli_fetch_array($sql)) {
                     $client_id = intval($row['client_id']);
-                    $client_name = htmlentities($row['client_name']);
+                    $client_name = nullable_htmlentities($row['client_name']);
                     $recurring_monthly_total = floatval($row['recurring_monthly_total']);
                     $recurring_total = $recurring_total + $recurring_monthly_total;
                 ?>
diff --git a/report_tax_summary.php b/report_tax_summary.php
index 0d48a039..b11364ed 100644
--- a/report_tax_summary.php
+++ b/report_tax_summary.php
@@ -55,7 +55,7 @@ $sql_tax = mysqli_query($mysqli, "SELECT * FROM taxes ORDER BY tax_name ASC");
                     <?php
                     while ($row = mysqli_fetch_array($sql_tax)) {
                         $tax_id = intval($row['tax_id']);
-                        $tax_name = htmlentities($row['tax_name']);
+                        $tax_name = nullable_htmlentities($row['tax_name']);
                         ?>
 
                         <tr>
diff --git a/report_ticket_by_client.php b/report_ticket_by_client.php
index e8104709..e07631b2 100644
--- a/report_ticket_by_client.php
+++ b/report_ticket_by_client.php
@@ -85,7 +85,7 @@ $sql_clients = mysqli_query($mysqli, "SELECT client_id, client_name FROM clients
                     <?php
                     while ($row = mysqli_fetch_array($sql_clients)) {
                         $client_id = intval($row['client_id']);
-                        $client_name = htmlentities($row['client_name']);
+                        $client_name = nullable_htmlentities($row['client_name']);
 
                         // Calculate total tickets raised in period
                         $sql_ticket_raised_count = mysqli_query($mysqli, "SELECT COUNT(ticket_id) AS ticket_raised_count FROM tickets WHERE YEAR(ticket_created_at) = $year AND ticket_client_id = $client_id");
diff --git a/revenue_add_modal.php b/revenue_add_modal.php
index 2c1f7689..0f5f83cf 100644
--- a/revenue_add_modal.php
+++ b/revenue_add_modal.php
@@ -64,8 +64,8 @@
                                     $sql = mysqli_query($mysqli, "SELECT * FROM accounts WHERE account_archived_at IS NULL ORDER BY account_name ASC");
                                     while ($row = mysqli_fetch_array($sql)) {
                                         $account_id = intval($row['account_id']);
-                                        $account_name = htmlentities($row['account_name']);
-                                        $account_currency_code = htmlentities($row['account_currency_code']);
+                                        $account_name = nullable_htmlentities($row['account_name']);
+                                        $account_currency_code = nullable_htmlentities($row['account_currency_code']);
                                         $opening_balance = floatval($row['opening_balance']);
 
                                         $sql_payments = mysqli_query($mysqli, "SELECT SUM(payment_amount) AS total_payments FROM payments WHERE payment_account_id = $account_id");
@@ -105,7 +105,7 @@
                                     $sql = mysqli_query($mysqli, "SELECT * FROM categories WHERE category_type = 'Income' AND category_archived_at IS NULL ORDER BY category_name ASC");
                                     while ($row = mysqli_fetch_array($sql)) {
                                         $category_id = intval($row['category_id']);
-                                        $category_name = htmlentities($row['category_name']);
+                                        $category_name = nullable_htmlentities($row['category_name']);
                                         ?>
                                         <option value="<?php echo $category_id; ?>"><?php echo $category_name; ?></option>
 
@@ -140,7 +140,7 @@
 
                                     $sql = mysqli_query($mysqli, "SELECT * FROM categories WHERE category_type = 'Payment Method' AND category_archived_at IS NULL ORDER BY category_name ASC");
                                     while ($row = mysqli_fetch_array($sql)) {
-                                        $category_name = htmlentities($row['category_name']);
+                                        $category_name = nullable_htmlentities($row['category_name']);
                                         ?>
                                         <option><?php echo $category_name; ?></option>
 
diff --git a/revenue_edit_modal.php b/revenue_edit_modal.php
index 1e97d064..af7ad995 100644
--- a/revenue_edit_modal.php
+++ b/revenue_edit_modal.php
@@ -65,8 +65,8 @@
                                     $sql_accounts = mysqli_query($mysqli, "SELECT * FROM accounts WHERE (account_archived_at > '$revenue_created_at' OR account_archived_at IS NULL) ORDER BY account_name ASC");
                                     while ($row = mysqli_fetch_array($sql_accounts)) {
                                         $account_id_select = intval($row['account_id']);
-                                        $account_name_select = htmlentities($row['account_name']);
-                                        $account_currency_code_select = htmlentities($row['account_currency_code']);
+                                        $account_name_select = nullable_htmlentities($row['account_name']);
+                                        $account_currency_code_select = nullable_htmlentities($row['account_currency_code']);
                                         $opening_balance = floatval($row['opening_balance']);
 
                                         $sql_payments = mysqli_query($mysqli, "SELECT SUM(payment_amount) AS total_payments FROM payments WHERE payment_account_id = $account_id_select");
@@ -106,7 +106,7 @@
                                     $sql_category = mysqli_query($mysqli, "SELECT * FROM categories WHERE category_type = 'Income' AND (category_archived_at > '$revenue_created_at' OR category_archived_at IS NULL) ORDER BY category_name ASC");
                                     while ($row = mysqli_fetch_array($sql_category)) {
                                         $category_id_select = intval($row['category_id']);
-                                        $category_name = htmlentities($row['category_name']);
+                                        $category_name = nullable_htmlentities($row['category_name']);
                                         ?>
                                         <option <?php if ($category_id_select == $category_id) { echo "selected"; } ?> value="<?php echo $category_id_select; ?>"><?php echo $category_name; ?></option>
 
@@ -141,7 +141,7 @@
 
                                     $sql_categories = mysqli_query($mysqli, "SELECT * FROM categories WHERE category_type = 'Payment Method' AND (category_archived_at > '$revenue_created_at' OR category_archived_at IS NULL) ORDER BY category_name ASC");
                                     while ($row = mysqli_fetch_array($sql_categories)) {
-                                        $category_name_select = htmlentities($row['category_name']);
+                                        $category_name_select = nullable_htmlentities($row['category_name']);
                                         ?>
                                         <option <?php if ($revenue_payment_method == $category_name_select) { echo "selected"; } ?>><?php echo "$category_name_select"; ?></option>
 
diff --git a/revenues.php b/revenues.php
index 8b33f226..015b7498 100644
--- a/revenues.php
+++ b/revenues.php
@@ -35,7 +35,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
             <div class="row">
                 <div class="col-sm-4">
                     <div class="input-group">
-                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Revenues">
+                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Revenues">
                         <div class="input-group-append">
                             <button class="btn btn-secondary" type="button" data-toggle="collapse" data-target="#advancedFilter"><i class="fas fa-filter"></i></button>
                             <button class="btn btn-primary"><i class="fa fa-search"></i></button>
@@ -64,13 +64,13 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                     <div class="col-md-2">
                         <div class="form-group">
                             <label>Date From</label>
-                            <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo htmlentities($dtf); ?>">
+                            <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo nullable_htmlentities($dtf); ?>">
                         </div>
                     </div>
                     <div class="col-md-2">
                         <div class="form-group">
                             <label>Date To</label>
-                            <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo htmlentities($dtt); ?>">
+                            <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo nullable_htmlentities($dtt); ?>">
                         </div>
                     </div>
                 </div>
@@ -95,22 +95,22 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 while ($row = mysqli_fetch_array($sql)) {
                     $revenue_id = intval($row['revenue_id']);
-                    $revenue_description = htmlentities($row['revenue_description']);
-                    $revenue_reference = htmlentities($row['revenue_reference']);
+                    $revenue_description = nullable_htmlentities($row['revenue_description']);
+                    $revenue_reference = nullable_htmlentities($row['revenue_reference']);
                     if (empty($revenue_reference)) {
                         $revenue_reference_display = "-";
                     } else {
                         $revenue_reference_display = $revenue_reference;
                     }
-                    $revenue_date = htmlentities($row['revenue_date']);
-                    $revenue_payment_method = htmlentities($row['revenue_payment_method']);
+                    $revenue_date = nullable_htmlentities($row['revenue_date']);
+                    $revenue_payment_method = nullable_htmlentities($row['revenue_payment_method']);
                     $revenue_amount = floatval($row['revenue_amount']);
-                    $revenue_currency_code = htmlentities($row['revenue_currency_code']);
-                    $revenue_created_at = htmlentities($row['revenue_created_at']);
+                    $revenue_currency_code = nullable_htmlentities($row['revenue_currency_code']);
+                    $revenue_created_at = nullable_htmlentities($row['revenue_created_at']);
                     $account_id = intval($row['account_id']);
-                    $account_name = htmlentities($row['account_name']);
+                    $account_name = nullable_htmlentities($row['account_name']);
                     $category_id = intval($row['category_id']);
-                    $category_name = htmlentities($row['category_name']);
+                    $category_name = nullable_htmlentities($row['category_name']);
 
                     ?>
 
diff --git a/scheduled_ticket_add_modal.php b/scheduled_ticket_add_modal.php
index b91b392b..4a317e3f 100644
--- a/scheduled_ticket_add_modal.php
+++ b/scheduled_ticket_add_modal.php
@@ -24,7 +24,7 @@
                                     $sql = mysqli_query($mysqli, "SELECT * FROM contacts WHERE contact_client_id = $client_id ORDER BY contact_name ASC");
                                     while ($row = mysqli_fetch_array($sql)) {
                                         $contact_id = intval($row['contact_id']);
-                                        $contact_name = htmlentities($row['contact_name']);
+                                        $contact_name = nullable_htmlentities($row['contact_name']);
                                         ?>
                                         <option value="<?php echo $contact_id; ?>" <?php if ($primary_contact == $contact_id) { echo "selected"; } ?>><?php echo $contact_name; ?></option>
 
@@ -46,7 +46,7 @@
                                     $sql = mysqli_query($mysqli, "SELECT * FROM clients ORDER BY client_name ASC");
                                     while ($row = mysqli_fetch_array($sql)) {
                                         $selectable_client_id = intval($row['client_id']);
-                                        $client_name = htmlentities($row['client_name']);
+                                        $client_name = nullable_htmlentities($row['client_name']);
                                         ?>
                                         <option value="<?php echo $selectable_client_id; ?>"><?php echo $client_name; ?></option>
 
@@ -121,7 +121,7 @@
 
                                     while ($row = mysqli_fetch_array($sql_assets)) {
                                         $asset_id_select = intval($row['asset_id']);
-                                        $asset_name_select = htmlentities($row['asset_name']);
+                                        $asset_name_select = nullable_htmlentities($row['asset_name']);
                                         ?>
                                         <option value="<?php echo $asset_id_select; ?>"><?php echo $asset_name_select; ?></option>
 
diff --git a/scheduled_tickets.php b/scheduled_tickets.php
index b2004de5..64c06820 100644
--- a/scheduled_tickets.php
+++ b/scheduled_tickets.php
@@ -41,7 +41,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     <div class="col-md-4">
                         <div class="input-group mb-3 mb-md-0">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Scheduled Tickets">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Scheduled Tickets">
                             <div class="input-group-append">
                                 <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                             </div>
@@ -97,11 +97,11 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                         while ($row = mysqli_fetch_array($sql)) {
                             $scheduled_ticket_id = intval($row['scheduled_ticket_id']);
                             $scheduled_ticket_client_id = intval($row['client_id']);
-                            $scheduled_ticket_subject = htmlentities($row['scheduled_ticket_subject']);
-                            $scheduled_ticket_priority = htmlentities($row['scheduled_ticket_priority']);
-                            $scheduled_ticket_frequency = htmlentities($row['scheduled_ticket_frequency']);
-                            $scheduled_ticket_next_run = htmlentities($row['scheduled_ticket_next_run']);
-                            $scheduled_ticket_client_name = htmlentities($row['client_name']);
+                            $scheduled_ticket_subject = nullable_htmlentities($row['scheduled_ticket_subject']);
+                            $scheduled_ticket_priority = nullable_htmlentities($row['scheduled_ticket_priority']);
+                            $scheduled_ticket_frequency = nullable_htmlentities($row['scheduled_ticket_frequency']);
+                            $scheduled_ticket_next_run = nullable_htmlentities($row['scheduled_ticket_next_run']);
+                            $scheduled_ticket_client_name = nullable_htmlentities($row['client_name']);
                             ?>
 
                             <tr>
diff --git a/settings_alerts.php b/settings_alerts.php
index f9a9ecc0..6af018e4 100644
--- a/settings_alerts.php
+++ b/settings_alerts.php
@@ -21,7 +21,7 @@ require_once("inc_all_settings.php"); ?>
                         <div class="input-group-prepend">
                             <span class="input-group-text"><i class="fa fa-fw fa-key"></i></span>
                         </div>
-                        <input type="text" class="form-control" name="config_cron_key" placeholder="Generate a CRON Key" value="<?php echo htmlentities($config_cron_key); ?>" readonly>
+                        <input type="text" class="form-control" name="config_cron_key" placeholder="Generate a CRON Key" value="<?php echo nullable_htmlentities($config_cron_key); ?>" readonly>
                         <div class="input-group-append">
                             <a href="post.php?generate_cron_key" class="btn btn-secondary"><i class="fas fa-fw fa-sync mr-2"></i>Generate</a>
                         </div>
@@ -50,7 +50,7 @@ require_once("inc_all_settings.php"); ?>
                             <div class="input-group-prepend">
                                 <span class="input-group-text"><i class="fa fa-fw fa-bell"></i></span>
                             </div>
-                            <input type="text" class="form-control" name="config_invoice_overdue_reminders" placeholder="Send After Due Days" value="<?php echo htmlentities($config_invoice_overdue_reminders); ?>">
+                            <input type="text" class="form-control" name="config_invoice_overdue_reminders" placeholder="Send After Due Days" value="<?php echo nullable_htmlentities($config_invoice_overdue_reminders); ?>">
                         </div>
                     </div>
 
diff --git a/settings_api.php b/settings_api.php
index b3432002..e38f3043 100644
--- a/settings_api.php
+++ b/settings_api.php
@@ -36,7 +36,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     <div class="col-md-4">
                         <div class="input-group mb-3 mb-md-0">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search keys">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search keys">
                             <div class="input-group-append">
                                 <button class="btn btn-primary"><i class="fa fa-search"></i></button>
                             </div>
@@ -88,10 +88,10 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                         while ($row = mysqli_fetch_array($sql)) {
                             $api_key_id = intval($row['api_key_id']);
-                            $api_key_name = htmlentities($row['api_key_name']);
-                            $api_key_secret = htmlentities("************" . substr($row['api_key_secret'], -4));
-                            $api_key_created_at = htmlentities($row['api_key_created_at']);
-                            $api_key_expire = htmlentities($row['api_key_expire']);
+                            $api_key_name = nullable_htmlentities($row['api_key_name']);
+                            $api_key_secret = nullable_htmlentities("************" . substr($row['api_key_secret'], -4));
+                            $api_key_created_at = nullable_htmlentities($row['api_key_created_at']);
+                            $api_key_expire = nullable_htmlentities($row['api_key_expire']);
                             if ($api_key_expire < date("Y-m-d H:i:s")) {
                                 $api_key_expire = $api_key_expire . " (Expired)";
                             }
@@ -99,7 +99,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                             if ($row['api_key_client_id'] == 0) {
                                 $api_key_client = "<i>All Clients</i>";
                             } else {
-                                $api_key_client = htmlentities($row['client_name']);
+                                $api_key_client = nullable_htmlentities($row['client_name']);
                             }
 
                             ?>
diff --git a/settings_company.php b/settings_company.php
index 05712731..f2535d46 100644
--- a/settings_company.php
+++ b/settings_company.php
@@ -5,20 +5,20 @@ $sql = mysqli_query($mysqli,"SELECT * FROM companies, settings WHERE companies.c
 
 $row = mysqli_fetch_array($sql);
 $company_id = intval($row['company_id']);
-$company_name = htmlentities($row['company_name']);
-$company_country = htmlentities($row['company_country']);
-$company_address = htmlentities($row['company_address']);
-$company_city = htmlentities($row['company_city']);
-$company_state = htmlentities($row['company_state']);
-$company_zip = htmlentities($row['company_zip']);
+$company_name = nullable_htmlentities($row['company_name']);
+$company_country = nullable_htmlentities($row['company_country']);
+$company_address = nullable_htmlentities($row['company_address']);
+$company_city = nullable_htmlentities($row['company_city']);
+$company_state = nullable_htmlentities($row['company_state']);
+$company_zip = nullable_htmlentities($row['company_zip']);
 $company_phone = formatPhoneNumber($row['company_phone']);
-$company_email = htmlentities($row['company_email']);
-$company_website = htmlentities($row['company_website']);
-$company_logo = htmlentities($row['company_logo']);
-$company_locale = htmlentities($row['company_locale']);
-$company_currency = htmlentities($row['company_currency']);
+$company_email = nullable_htmlentities($row['company_email']);
+$company_website = nullable_htmlentities($row['company_website']);
+$company_logo = nullable_htmlentities($row['company_logo']);
+$company_locale = nullable_htmlentities($row['company_locale']);
+$company_currency = nullable_htmlentities($row['company_currency']);
 
-$company_initials = htmlentities(initials($company_name));
+$company_initials = nullable_htmlentities(initials($company_name));
 
 ?>
 
diff --git a/settings_custom_fields.php b/settings_custom_fields.php
index c73163fb..353e76a8 100644
--- a/settings_custom_fields.php
+++ b/settings_custom_fields.php
@@ -30,18 +30,18 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
     <div class="card card-dark">
         <div class="card-header py-2">
-            <h3 class="card-title mt-2"><i class="fa fa-fw fa-list mr-2"></i><?php echo htmlentities($table); ?> Fields</h3>
+            <h3 class="card-title mt-2"><i class="fa fa-fw fa-list mr-2"></i><?php echo nullable_htmlentities($table); ?> Fields</h3>
             <div class="card-tools">
                 <button type="button" class="btn btn-primary" data-toggle="modal" data-target="#createCustomFieldModal"><i class="fas fa-plus mr-2"></i>Create</button>
             </div>
         </div>
         <div class="card-body">
             <form autocomplete="off">
-                <input type="hidden" name="table" value="<?php echo htmlentities($table); ?>">
+                <input type="hidden" name="table" value="<?php echo nullable_htmlentities($table); ?>">
                 <div class="row">
                     <div class="col-sm-4 mb-2">
                         <div class="input-group">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search">
                             <div class="input-group-append">
                                 <button class="btn btn-primary"><i class="fa fa-search"></i></button>
                             </div>
@@ -70,8 +70,8 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $custom_field_id = intval($row['custom_field_id']);
-                        $custom_field_label = htmlentities($row['custom_field_label']);
-                        $custom_field_type = htmlentities($row['custom_field_type']);
+                        $custom_field_label = nullable_htmlentities($row['custom_field_label']);
+                        $custom_field_type = nullable_htmlentities($row['custom_field_type']);
                         $custom_field_location = intval($row['custom_field_location']);
                         $custom_field_order = intval($row['custom_field_order']);
                         
diff --git a/settings_defaults.php b/settings_defaults.php
index bd124aa2..59a635d6 100644
--- a/settings_defaults.php
+++ b/settings_defaults.php
@@ -22,7 +22,7 @@ require_once("inc_all_settings.php"); ?>
                             $sql = mysqli_query($mysqli, "SELECT * FROM accounts WHERE company_id = $session_company_id ORDER BY account_name ASC");
                             while ($row = mysqli_fetch_array($sql)) {
                                 $account_id = intval($row['account_id']);
-                                $account_name = htmlentities($row['account_name']); ?>
+                                $account_name = nullable_htmlentities($row['account_name']); ?>
                                 <option <?php if ($config_default_transfer_from_account == $account_id) { echo "selected"; } ?> value="<?php echo $account_id; ?>"><?php echo $account_name; ?></option>
                             <?php } ?>
 
@@ -43,7 +43,7 @@ require_once("inc_all_settings.php"); ?>
                             $sql = mysqli_query($mysqli, "SELECT * FROM accounts WHERE company_id = $session_company_id ORDER BY account_name ASC");
                             while ($row = mysqli_fetch_array($sql)) {
                                 $account_id = intval($row['account_id']);
-                                $account_name = htmlentities($row['account_name']); ?>
+                                $account_name = nullable_htmlentities($row['account_name']); ?>
                                 <option <?php if ($config_default_transfer_to_account == $account_id) { echo "selected"; } ?> value="<?php echo $account_id; ?>"><?php echo $account_name; ?></option>
                             <?php } ?>
 
@@ -64,7 +64,7 @@ require_once("inc_all_settings.php"); ?>
                             $sql = mysqli_query($mysqli, "SELECT * FROM accounts WHERE company_id = $session_company_id ORDER BY account_name ASC");
                             while ($row = mysqli_fetch_array($sql)) {
                                 $account_id = intval($row['account_id']);
-                                $account_name = htmlentities($row['account_name']); ?>
+                                $account_name = nullable_htmlentities($row['account_name']); ?>
                                 <option <?php if ($config_default_payment_account == $account_id) { echo "selected"; } ?> value="<?php echo $account_id; ?>"><?php echo $account_name; ?></option>
                             <?php } ?>
 
@@ -85,7 +85,7 @@ require_once("inc_all_settings.php"); ?>
                             $sql = mysqli_query($mysqli, "SELECT * FROM accounts WHERE company_id = $session_company_id ORDER BY account_name ASC");
                             while ($row = mysqli_fetch_array($sql)) {
                                 $account_id = intval($row['account_id']);
-                                $account_name = htmlentities($row['account_name']); ?>
+                                $account_name = nullable_htmlentities($row['account_name']); ?>
                                 <option <?php if ($config_default_expense_account == $account_id) { echo "selected"; } ?> value="<?php echo $account_id; ?>"><?php echo $account_name; ?></option>
                             <?php } ?>
 
@@ -105,7 +105,7 @@ require_once("inc_all_settings.php"); ?>
 
                             $sql = mysqli_query($mysqli, "SELECT * FROM categories WHERE category_type = 'Payment Method' AND company_id = $session_company_id ORDER BY category_name ASC");
                             while ($row = mysqli_fetch_array($sql)) {
-                                $payment_method = htmlentities($row['category_name']); ?>
+                                $payment_method = nullable_htmlentities($row['category_name']); ?>
                                 <option <?php if ($config_default_payment_method == $payment_method) { echo "selected"; } ?>><?php echo $payment_method; ?></option>
                             <?php } ?>
 
@@ -125,7 +125,7 @@ require_once("inc_all_settings.php"); ?>
 
                             $sql = mysqli_query($mysqli, "SELECT * FROM categories WHERE category_type = 'Payment Method' AND company_id = $session_company_id ORDER BY category_name ASC");
                             while ($row = mysqli_fetch_array($sql)) {
-                                $payment_method = htmlentities($row['category_name']); ?>
+                                $payment_method = nullable_htmlentities($row['category_name']); ?>
                                 <option <?php if ($config_default_expense_payment_method == $payment_method) { echo "selected"; } ?>><?php echo $payment_method; ?></option>
                             <?php } ?>
 
@@ -146,7 +146,7 @@ require_once("inc_all_settings.php"); ?>
                             $sql = mysqli_query($mysqli, "SELECT * FROM calendars WHERE company_id = $session_company_id ORDER BY calendar_name ASC");
                             while ($row = mysqli_fetch_array($sql)) {
                                 $calendar_id = intval($row['calendar_id']);
-                                $calendar_name = htmlentities($row['calendar_name']); ?>
+                                $calendar_name = nullable_htmlentities($row['calendar_name']); ?>
                                 <option <?php if ($config_default_calendar == $calendar_id) { echo "selected"; } ?> value="<?php echo $calendar_id; ?>"><?php echo $calendar_name; ?></option>
                             <?php } ?>
 
diff --git a/settings_integrations.php b/settings_integrations.php
index 5d2a9f01..f64b7230 100644
--- a/settings_integrations.php
+++ b/settings_integrations.php
@@ -15,7 +15,7 @@ require_once("inc_all_settings.php"); ?>
                         <div class="input-group-prepend">
                             <span class="input-group-text"><i class="fa fa-fw fa-user"></i></span>
                         </div>
-                        <input type="text" class="form-control" name="azure_client_id" placeholder="e721e3b6-01d6-50e8-7f22-c84d951a52e7" value="<?php echo htmlentities($config_azure_client_id); ?>">
+                        <input type="text" class="form-control" name="azure_client_id" placeholder="e721e3b6-01d6-50e8-7f22-c84d951a52e7" value="<?php echo nullable_htmlentities($config_azure_client_id); ?>">
                     </div>
                 </div>
 
@@ -25,7 +25,7 @@ require_once("inc_all_settings.php"); ?>
                         <div class="input-group-prepend">
                             <span class="input-group-text"><i class="fa fa-fw fa-key"></i></span>
                         </div>
-                        <input type="password" class="form-control" name="azure_client_secret" placeholder="Auto-generated from App Registration" value="<?php echo htmlentities($config_azure_client_secret); ?>" autocomplete="new-password">
+                        <input type="password" class="form-control" name="azure_client_secret" placeholder="Auto-generated from App Registration" value="<?php echo nullable_htmlentities($config_azure_client_secret); ?>" autocomplete="new-password">
                     </div>
                 </div>
 
diff --git a/settings_invoice.php b/settings_invoice.php
index 0465a6de..2a57226c 100644
--- a/settings_invoice.php
+++ b/settings_invoice.php
@@ -16,7 +16,7 @@ require_once("inc_all_settings.php"); ?>
                         <div class="input-group-prepend">
                             <span class="input-group-text"><i class="fa fa-fw fa-barcode"></i></span>
                         </div>
-                        <input type="text" class="form-control" name="config_invoice_prefix" placeholder="Invoice Prefix" value="<?php echo htmlentities($config_invoice_prefix); ?>" required>
+                        <input type="text" class="form-control" name="config_invoice_prefix" placeholder="Invoice Prefix" value="<?php echo nullable_htmlentities($config_invoice_prefix); ?>" required>
                     </div>
                 </div>
 
@@ -32,7 +32,7 @@ require_once("inc_all_settings.php"); ?>
 
                 <div class="form-group">
                     <label>Invoice Footer</label>
-                    <textarea class="form-control" rows="4" name="config_invoice_footer"><?php echo htmlentities($config_invoice_footer); ?></textarea>
+                    <textarea class="form-control" rows="4" name="config_invoice_footer"><?php echo nullable_htmlentities($config_invoice_footer); ?></textarea>
                 </div>
 
                 <div class="form-group">
@@ -41,7 +41,7 @@ require_once("inc_all_settings.php"); ?>
                         <div class="input-group-prepend">
                             <span class="input-group-text"><i class="fa fa-fw fa-envelope"></i></span>
                         </div>
-                        <input type="email" class="form-control" name="config_invoice_from_email" placeholder="From Email" value="<?php echo htmlentities($config_invoice_from_email); ?>">
+                        <input type="email" class="form-control" name="config_invoice_from_email" placeholder="From Email" value="<?php echo nullable_htmlentities($config_invoice_from_email); ?>">
                     </div>
                 </div>
 
@@ -51,7 +51,7 @@ require_once("inc_all_settings.php"); ?>
                         <div class="input-group-prepend">
                             <span class="input-group-text"><i class="fa fa-fw fa-tag"></i></span>
                         </div>
-                        <input type="text" class="form-control" name="config_invoice_from_name" placeholder="From Name" value="<?php echo htmlentities($config_invoice_from_name); ?>">
+                        <input type="text" class="form-control" name="config_invoice_from_name" placeholder="From Name" value="<?php echo nullable_htmlentities($config_invoice_from_name); ?>">
                     </div>
                 </div>
 
@@ -65,7 +65,7 @@ require_once("inc_all_settings.php"); ?>
                         <div class="input-group-prepend">
                             <span class="input-group-text"><i class="fa fa-fw fa-barcode"></i></span>
                         </div>
-                        <input type="text" class="form-control" name="config_recurring_prefix" placeholder="Recurring Prefix" value="<?php echo htmlentities($config_recurring_prefix); ?>" required>
+                        <input type="text" class="form-control" name="config_recurring_prefix" placeholder="Recurring Prefix" value="<?php echo nullable_htmlentities($config_recurring_prefix); ?>" required>
                     </div>
                 </div>
 
diff --git a/settings_mail.php b/settings_mail.php
index 7ceab626..2ba4fd76 100644
--- a/settings_mail.php
+++ b/settings_mail.php
@@ -14,7 +14,7 @@ require_once("inc_all_settings.php"); ?>
                         <div class="input-group-prepend">
                             <span class="input-group-text"><i class="fa fa-fw fa-server"></i></span>
                         </div>
-                        <input type="text" class="form-control" name="config_smtp_host" placeholder="Mail Server Address" value="<?php echo htmlentities($config_smtp_host); ?>" required>
+                        <input type="text" class="form-control" name="config_smtp_host" placeholder="Mail Server Address" value="<?php echo nullable_htmlentities($config_smtp_host); ?>" required>
                     </div>
                 </div>
 
@@ -48,7 +48,7 @@ require_once("inc_all_settings.php"); ?>
                         <div class="input-group-prepend">
                             <span class="input-group-text"><i class="fa fa-fw fa-user"></i></span>
                         </div>
-                        <input type="text" class="form-control" name="config_smtp_username" placeholder="Username" value="<?php echo htmlentities($config_smtp_username); ?>" required>
+                        <input type="text" class="form-control" name="config_smtp_username" placeholder="Username" value="<?php echo nullable_htmlentities($config_smtp_username); ?>" required>
                     </div>
                 </div>
 
@@ -58,7 +58,7 @@ require_once("inc_all_settings.php"); ?>
                         <div class="input-group-prepend">
                             <span class="input-group-text"><i class="fa fa-fw fa-key"></i></span>
                         </div>
-                        <input type="password" class="form-control" data-toggle="password" name="config_smtp_password" placeholder="Password" value="<?php echo htmlentities($config_smtp_password); ?>" autocomplete="new-password" required>
+                        <input type="password" class="form-control" data-toggle="password" name="config_smtp_password" placeholder="Password" value="<?php echo nullable_htmlentities($config_smtp_password); ?>" autocomplete="new-password" required>
                         <div class="input-group-append">
                             <span class="input-group-text"><i class="fa fa-fw fa-eye"></i></span>
                         </div>
@@ -71,7 +71,7 @@ require_once("inc_all_settings.php"); ?>
                         <div class="input-group-prepend">
                             <span class="input-group-text"><i class="fa fa-fw fa-envelope"></i></span>
                         </div>
-                        <input type="email" class="form-control" name="config_mail_from_email" placeholder="Email Address" value="<?php echo htmlentities($config_mail_from_email); ?>">
+                        <input type="email" class="form-control" name="config_mail_from_email" placeholder="Email Address" value="<?php echo nullable_htmlentities($config_mail_from_email); ?>">
                     </div>
                 </div>
 
@@ -81,7 +81,7 @@ require_once("inc_all_settings.php"); ?>
                         <div class="input-group-prepend">
                             <span class="input-group-text"><i class="fa fa-fw fa-tag"></i></span>
                         </div>
-                        <input type="text" class="form-control" name="config_mail_from_name" placeholder="Name" value="<?php echo htmlentities($config_mail_from_name); ?>">
+                        <input type="text" class="form-control" name="config_mail_from_name" placeholder="Name" value="<?php echo nullable_htmlentities($config_mail_from_name); ?>">
                     </div>
                 </div>
 
@@ -93,7 +93,7 @@ require_once("inc_all_settings.php"); ?>
                         <div class="input-group-prepend">
                             <span class="input-group-text"><i class="fa fa-fw fa-server"></i></span>
                         </div>
-                        <input type="text" class="form-control" name="config_imap_host" placeholder="Incoming Mail Server Address (for email to ticket parsing)" value="<?php echo htmlentities($config_imap_host); ?>">
+                        <input type="text" class="form-control" name="config_imap_host" placeholder="Incoming Mail Server Address (for email to ticket parsing)" value="<?php echo nullable_htmlentities($config_imap_host); ?>">
                     </div>
                 </div>
 
diff --git a/settings_online_payment.php b/settings_online_payment.php
index 667452fc..ade93ff8 100644
--- a/settings_online_payment.php
+++ b/settings_online_payment.php
@@ -26,7 +26,7 @@ require_once("inc_all_settings.php");
                             <div class="input-group-prepend">
                                 <span class="input-group-text"><i class="fa fa-fw fa-eye"></i></span>
                             </div>
-                            <input type="text" class="form-control" name="config_stripe_publishable" placeholder="Stripe Publishable API Key (pk_...)" value="<?php echo htmlentities($config_stripe_publishable); ?>">
+                            <input type="text" class="form-control" name="config_stripe_publishable" placeholder="Stripe Publishable API Key (pk_...)" value="<?php echo nullable_htmlentities($config_stripe_publishable); ?>">
                         </div>
                     </div>
 
@@ -36,7 +36,7 @@ require_once("inc_all_settings.php");
                             <div class="input-group-prepend">
                                 <span class="input-group-text"><i class="fa fa-fw fa-lock"></i></span>
                             </div>
-                            <input type="text" class="form-control" name="config_stripe_secret" placeholder="Stripe Secret API Key (sk_...)" value="<?php echo htmlentities($config_stripe_secret); ?>">
+                            <input type="text" class="form-control" name="config_stripe_secret" placeholder="Stripe Secret API Key (sk_...)" value="<?php echo nullable_htmlentities($config_stripe_secret); ?>">
                         </div>
                     </div>
 
@@ -52,7 +52,7 @@ require_once("inc_all_settings.php");
                                 $sql_accounts = mysqli_query($mysqli, "SELECT * FROM accounts");
                                 while ($row = mysqli_fetch_array($sql_accounts)) {
                                     $account_id = intval($row['account_id']);
-                                    $account_name = htmlentities($row['account_name']); 
+                                    $account_name = nullable_htmlentities($row['account_name']); 
                                 ?>
                                     
                                     <option value="<?php echo $account_id ?>" <?php if ($account_id == $config_stripe_account) { echo "selected"; } ?>><?php echo $account_name ?></option>
diff --git a/settings_quote.php b/settings_quote.php
index 4bd4ff62..77f1dedc 100644
--- a/settings_quote.php
+++ b/settings_quote.php
@@ -14,7 +14,7 @@ require_once("inc_all_settings.php"); ?>
                         <div class="input-group-prepend">
                             <span class="input-group-text"><i class="fa fa-fw fa-barcode"></i></span>
                         </div>
-                        <input type="text" class="form-control" name="config_quote_prefix" placeholder="Quote Prefix" value="<?php echo htmlentities($config_quote_prefix); ?>" required>
+                        <input type="text" class="form-control" name="config_quote_prefix" placeholder="Quote Prefix" value="<?php echo nullable_htmlentities($config_quote_prefix); ?>" required>
                     </div>
                 </div>
 
@@ -30,7 +30,7 @@ require_once("inc_all_settings.php"); ?>
 
                 <div class="form-group">
                     <label>Quote Footer</label>
-                    <textarea class="form-control" rows="4" name="config_quote_footer"><?php echo htmlentities($config_quote_footer); ?></textarea>
+                    <textarea class="form-control" rows="4" name="config_quote_footer"><?php echo nullable_htmlentities($config_quote_footer); ?></textarea>
                 </div>
 
                 <div class="form-group">
@@ -39,7 +39,7 @@ require_once("inc_all_settings.php"); ?>
                         <div class="input-group-prepend">
                             <span class="input-group-text"><i class="fa fa-fw fa-envelope"></i></span>
                         </div>
-                        <input type="email" class="form-control" name="config_quote_from_email" placeholder="From Email" value="<?php echo htmlentities($config_quote_from_email); ?>">
+                        <input type="email" class="form-control" name="config_quote_from_email" placeholder="From Email" value="<?php echo nullable_htmlentities($config_quote_from_email); ?>">
                     </div>
                 </div>
 
@@ -49,7 +49,7 @@ require_once("inc_all_settings.php"); ?>
                         <div class="input-group-prepend">
                             <span class="input-group-text"><i class="fa fa-fw fa-tag"></i></span>
                         </div>
-                        <input type="text" class="form-control" name="config_quote_from_name" placeholder="Name" value="<?php echo htmlentities($config_quote_from_name); ?>">
+                        <input type="text" class="form-control" name="config_quote_from_name" placeholder="Name" value="<?php echo nullable_htmlentities($config_quote_from_name); ?>">
                     </div>
                 </div>
 
diff --git a/settings_side_nav.php b/settings_side_nav.php
index 4bbea8a5..afaa297d 100644
--- a/settings_side_nav.php
+++ b/settings_side_nav.php
@@ -1,5 +1,5 @@
 <!-- Main Sidebar Container -->
-<aside class="main-sidebar sidebar-dark-<?php echo htmlentities($config_theme); ?> d-print-none">
+<aside class="main-sidebar sidebar-dark-<?php echo nullable_htmlentities($config_theme); ?> d-print-none">
 
   <!-- Sidebar -->
   <div class="sidebar">
diff --git a/settings_software_templates.php b/settings_software_templates.php
index b9cc392a..fe046458 100644
--- a/settings_software_templates.php
+++ b/settings_software_templates.php
@@ -35,7 +35,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 <div class="col-md-4">
                     <div class="input-group mb-3 mb-md-0">
-                        <input type="search" class="form-control" name="q" value="<?php if(isset($q)){ echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Licenses">
+                        <input type="search" class="form-control" name="q" value="<?php if(isset($q)){ echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Licenses">
                         <div class="input-group-append">
                             <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                         </div>
@@ -64,15 +64,15 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 while($row = mysqli_fetch_array($sql)){
                     $software_id = intval($row['software_id']);
-                    $software_name = htmlentities($row['software_name']);
-                    $software_version = htmlentities($row['software_version']);
-                    $software_type = htmlentities($row['software_type']);
-                    $software_license_type = htmlentities($row['software_license_type']);
-                    $software_key = htmlentities($row['software_key']);
-                    $software_seats = htmlentities($row['software_seats']);
-                    $software_purchase = htmlentities($row['software_purchase']);
-                    $software_expire = htmlentities($row['software_expire']);
-                    $software_notes = htmlentities($row['software_notes']);
+                    $software_name = nullable_htmlentities($row['software_name']);
+                    $software_version = nullable_htmlentities($row['software_version']);
+                    $software_type = nullable_htmlentities($row['software_type']);
+                    $software_license_type = nullable_htmlentities($row['software_license_type']);
+                    $software_key = nullable_htmlentities($row['software_key']);
+                    $software_seats = nullable_htmlentities($row['software_seats']);
+                    $software_purchase = nullable_htmlentities($row['software_purchase']);
+                    $software_expire = nullable_htmlentities($row['software_expire']);
+                    $software_notes = nullable_htmlentities($row['software_notes']);
 
                     ?>
                     <tr>
diff --git a/settings_tags.php b/settings_tags.php
index 9bcc2036..af4459d5 100644
--- a/settings_tags.php
+++ b/settings_tags.php
@@ -53,7 +53,7 @@ if ($num_rows > 0) {
                 <div class="col-sm-4 mb-2">
                     <form autocomplete="off">
                         <div class="input-group">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Tags">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Tags">
                             <div class="input-group-append">
                                 <button class="btn btn-primary"><i class="fa fa-search"></i></button>
                             </div>
@@ -80,10 +80,10 @@ if ($num_rows > 0) {
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $tag_id = intval($row['tag_id']);
-                        $tag_name = htmlentities($row['tag_name']);
-                        $tag_type = htmlentities($row['tag_type']);
-                        $tag_color = htmlentities($row['tag_color']);
-                        $tag_icon = htmlentities($row['tag_icon']);
+                        $tag_name = nullable_htmlentities($row['tag_name']);
+                        $tag_type = nullable_htmlentities($row['tag_type']);
+                        $tag_color = nullable_htmlentities($row['tag_color']);
+                        $tag_icon = nullable_htmlentities($row['tag_icon']);
 
                         ?>
                         <tr>
diff --git a/settings_taxes.php b/settings_taxes.php
index a55d4ba3..06082966 100644
--- a/settings_taxes.php
+++ b/settings_taxes.php
@@ -42,7 +42,7 @@ $num_rows = mysqli_num_rows($sql);
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $tax_id = intval($row['tax_id']);
-                        $tax_name = htmlentities($row['tax_name']);
+                        $tax_name = nullable_htmlentities($row['tax_name']);
                         $tax_percent = floatval($row['tax_percent']);
 
                         ?>
diff --git a/settings_ticket.php b/settings_ticket.php
index 75b52d7b..ab6a80e3 100644
--- a/settings_ticket.php
+++ b/settings_ticket.php
@@ -14,7 +14,7 @@ require_once("inc_all_settings.php"); ?>
                         <div class="input-group-prepend">
                             <span class="input-group-text"><i class="fa fa-fw fa-life-ring"></i></span>
                         </div>
-                        <input type="text" class="form-control" name="config_ticket_prefix" placeholder="Ticket Prefix" value="<?php echo htmlentities($config_ticket_prefix); ?>">
+                        <input type="text" class="form-control" name="config_ticket_prefix" placeholder="Ticket Prefix" value="<?php echo nullable_htmlentities($config_ticket_prefix); ?>">
                     </div>
                 </div>
 
@@ -34,7 +34,7 @@ require_once("inc_all_settings.php"); ?>
                         <div class="input-group-prepend">
                             <span class="input-group-text"><i class="fa fa-fw fa-envelope"></i></span>
                         </div>
-                        <input type="email" class="form-control" name="config_ticket_from_email" placeholder="From Email" value="<?php echo htmlentities($config_ticket_from_email); ?>">
+                        <input type="email" class="form-control" name="config_ticket_from_email" placeholder="From Email" value="<?php echo nullable_htmlentities($config_ticket_from_email); ?>">
                     </div>
                 </div>
 
@@ -44,7 +44,7 @@ require_once("inc_all_settings.php"); ?>
                         <div class="input-group-prepend">
                             <span class="input-group-text"><i class="fa fa-fw fa-tag"></i></span>
                         </div>
-                        <input type="text" class="form-control" name="config_ticket_from_name" placeholder="Name" value="<?php echo htmlentities($config_ticket_from_name); ?>">
+                        <input type="text" class="form-control" name="config_ticket_from_name" placeholder="Name" value="<?php echo nullable_htmlentities($config_ticket_from_name); ?>">
                     </div>
                 </div>
 
diff --git a/settings_vendor_templates.php b/settings_vendor_templates.php
index 586e1637..18c57f50 100644
--- a/settings_vendor_templates.php
+++ b/settings_vendor_templates.php
@@ -37,7 +37,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     <div class="col-md-4">
                         <div class="input-group mb-3 mb-md-0">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Vendors Templates">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Vendors Templates">
                             <div class="input-group-append">
                                 <button class="btn btn-dark"><i class="fa fa-search"></i></button>
                             </div>
@@ -62,28 +62,28 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $vendor_id = intval($row['vendor_id']);
-                        $vendor_name = htmlentities($row['vendor_name']);
-                        $vendor_description = htmlentities($row['vendor_description']);
+                        $vendor_name = nullable_htmlentities($row['vendor_name']);
+                        $vendor_description = nullable_htmlentities($row['vendor_description']);
                         if (empty($vendor_description)) {
                             $vendor_description_display = "-";
                         } else {
                             $vendor_description_display = $vendor_description;
                         }
-                        $vendor_account_number = htmlentities($row['vendor_account_number']);
-                        $vendor_contact_name = htmlentities($row['vendor_contact_name']);
+                        $vendor_account_number = nullable_htmlentities($row['vendor_account_number']);
+                        $vendor_contact_name = nullable_htmlentities($row['vendor_contact_name']);
                         if (empty($vendor_contact_name)) {
                             $vendor_contact_name_display = "-";
                         } else {
                             $vendor_contact_name_display = $vendor_contact_name;
                         }
                         $vendor_phone = formatPhoneNumber($row['vendor_phone']);
-                        $vendor_extension = htmlentities($row['vendor_extension']);
-                        $vendor_email = htmlentities($row['vendor_email']);
-                        $vendor_website = htmlentities($row['vendor_website']);
-                        $vendor_hours = htmlentities($row['vendor_hours']);
-                        $vendor_sla = htmlentities($row['vendor_sla']);
-                        $vendor_code = htmlentities($row['vendor_code']);
-                        $vendor_notes = htmlentities($row['vendor_notes']);
+                        $vendor_extension = nullable_htmlentities($row['vendor_extension']);
+                        $vendor_email = nullable_htmlentities($row['vendor_email']);
+                        $vendor_website = nullable_htmlentities($row['vendor_website']);
+                        $vendor_hours = nullable_htmlentities($row['vendor_hours']);
+                        $vendor_sla = nullable_htmlentities($row['vendor_sla']);
+                        $vendor_code = nullable_htmlentities($row['vendor_code']);
+                        $vendor_notes = nullable_htmlentities($row['vendor_notes']);
                         $vendor_template = intval($row['vendor_template']);
 
                         ?>
diff --git a/setup.php b/setup.php
index e467ae70..80a27f3e 100644
--- a/setup.php
+++ b/setup.php
@@ -1161,7 +1161,7 @@ if (isset($_POST['add_telemetry'])) {
                 if (!empty($_SESSION['alert_message'])) {
                     ?>
                     <div class="alert alert-info" id="alert">
-                        <?php echo htmlentities($_SESSION['alert_message']); ?>
+                        <?php echo nullable_htmlentities($_SESSION['alert_message']); ?>
                         <button class='close' data-dismiss='alert'>&times;</button>
                     </div>
                     <?php
diff --git a/side_nav.php b/side_nav.php
index 0473b8ad..b188b649 100644
--- a/side_nav.php
+++ b/side_nav.php
@@ -1,5 +1,5 @@
 <!-- Main Sidebar Container -->
-<aside class="main-sidebar sidebar-dark-<?php echo htmlentities($config_theme); ?> d-print-none">
+<aside class="main-sidebar sidebar-dark-<?php echo nullable_htmlentities($config_theme); ?> d-print-none">
 
     <!-- Sidebar -->
     <div class="sidebar">
@@ -9,7 +9,7 @@
 
             <div class="dropdown brand-link">
                 <a class="" href="#">
-                    <h3 class="brand-text text-light mb-0"><?php echo htmlentities($session_company_name); ?></h3>
+                    <h3 class="brand-text text-light mb-0"><?php echo nullable_htmlentities($session_company_name); ?></h3>
                 </a>
             </div>
 
diff --git a/ticket.php b/ticket.php
index 38baaf7f..f2f0dda9 100644
--- a/ticket.php
+++ b/ticket.php
@@ -31,21 +31,21 @@ if (isset($_GET['ticket_id'])) {
 
         $row = mysqli_fetch_array($sql);
         $client_id = intval($row['client_id']);
-        $client_name = htmlentities($row['client_name']);
-        $client_type = htmlentities($row['client_type']);
-        $client_website = htmlentities($row['client_website']);
+        $client_name = nullable_htmlentities($row['client_name']);
+        $client_type = nullable_htmlentities($row['client_type']);
+        $client_website = nullable_htmlentities($row['client_website']);
 
         $client_net_terms = intval($row['client_net_terms']);
         if ($client_net_terms == 0) {
             $client_net_terms = $config_default_net_terms;
         }
 
-        $ticket_prefix = htmlentities($row['ticket_prefix']);
+        $ticket_prefix = nullable_htmlentities($row['ticket_prefix']);
         $ticket_number = intval($row['ticket_number']);
-        $ticket_category = htmlentities($row['ticket_category']);
-        $ticket_subject = htmlentities($row['ticket_subject']);
+        $ticket_category = nullable_htmlentities($row['ticket_category']);
+        $ticket_subject = nullable_htmlentities($row['ticket_subject']);
         $ticket_details = $purifier->purify($row['ticket_details']);
-        $ticket_priority = htmlentities($row['ticket_priority']);
+        $ticket_priority = nullable_htmlentities($row['ticket_priority']);
         //Set Ticket Bage Color based of priority
         if ($ticket_priority == "High") {
             $ticket_priority_display = "<span class='p-2 badge badge-danger'>$ticket_priority</span>";
@@ -56,9 +56,9 @@ if (isset($_GET['ticket_id'])) {
         } else {
             $ticket_priority_display = "-";
         }
-        $ticket_feedback = htmlentities($row['ticket_feedback']);
+        $ticket_feedback = nullable_htmlentities($row['ticket_feedback']);
 
-        $ticket_status = htmlentities($row['ticket_status']);
+        $ticket_status = nullable_htmlentities($row['ticket_status']);
         if ($ticket_status == "Open") {
             $ticket_status_display = "<span class='p-2 badge badge-primary'>$ticket_status</span>";
         } elseif ($ticket_status == "Working") {
@@ -67,55 +67,55 @@ if (isset($_GET['ticket_id'])) {
             $ticket_status_display = "<span class='p-2 badge badge-secondary'>$ticket_status</span>";
         }
 
-        $ticket_created_at = htmlentities($row['ticket_created_at']);
+        $ticket_created_at = nullable_htmlentities($row['ticket_created_at']);
         $ticket_date = date('Y-m-d', strtotime($ticket_created_at));
-        $ticket_updated_at = htmlentities($row['ticket_updated_at']);
-        $ticket_closed_at = htmlentities($row['ticket_closed_at']);
+        $ticket_updated_at = nullable_htmlentities($row['ticket_updated_at']);
+        $ticket_closed_at = nullable_htmlentities($row['ticket_closed_at']);
 
         $ticket_assigned_to = intval($row['ticket_assigned_to']);
         if (empty($ticket_assigned_to)) {
             $ticket_assigned_to_display = "<span class='text-danger'>Not Assigned</span>";
         } else {
-            $ticket_assigned_to_display = htmlentities($row['user_name']);
+            $ticket_assigned_to_display = nullable_htmlentities($row['user_name']);
         }
 
         $contact_id = intval($row['contact_id']);
-        $contact_name = htmlentities($row['contact_name']);
-        $contact_title = htmlentities($row['contact_title']);
-        $contact_email = htmlentities($row['contact_email']);
+        $contact_name = nullable_htmlentities($row['contact_name']);
+        $contact_title = nullable_htmlentities($row['contact_title']);
+        $contact_email = nullable_htmlentities($row['contact_email']);
         $contact_phone = formatPhoneNumber($row['contact_phone']);
-        $contact_extension = htmlentities($row['contact_extension']);
+        $contact_extension = nullable_htmlentities($row['contact_extension']);
         $contact_mobile = formatPhoneNumber($row['contact_mobile']);
 
         $asset_id = intval($row['asset_id']);
-        $asset_ip = htmlentities($row['asset_ip']);
-        $asset_name = htmlentities($row['asset_name']);
-        $asset_type = htmlentities($row['asset_type']);
-        $asset_make = htmlentities($row['asset_make']);
-        $asset_model = htmlentities($row['asset_model']);
-        $asset_serial = htmlentities($row['asset_serial']);
-        $asset_os = htmlentities($row['asset_os']);
-        $asset_warranty_expire = htmlentities($row['asset_warranty_expire']);
+        $asset_ip = nullable_htmlentities($row['asset_ip']);
+        $asset_name = nullable_htmlentities($row['asset_name']);
+        $asset_type = nullable_htmlentities($row['asset_type']);
+        $asset_make = nullable_htmlentities($row['asset_make']);
+        $asset_model = nullable_htmlentities($row['asset_model']);
+        $asset_serial = nullable_htmlentities($row['asset_serial']);
+        $asset_os = nullable_htmlentities($row['asset_os']);
+        $asset_warranty_expire = nullable_htmlentities($row['asset_warranty_expire']);
 
         $vendor_id = intval($row['ticket_vendor_id']);
-        $vendor_name = htmlentities($row['vendor_name']);
-        $vendor_description = htmlentities($row['vendor_description']);
-        $vendor_account_number = htmlentities($row['vendor_account_number']);
-        $vendor_contact_name = htmlentities($row['vendor_contact_name']);
+        $vendor_name = nullable_htmlentities($row['vendor_name']);
+        $vendor_description = nullable_htmlentities($row['vendor_description']);
+        $vendor_account_number = nullable_htmlentities($row['vendor_account_number']);
+        $vendor_contact_name = nullable_htmlentities($row['vendor_contact_name']);
         $vendor_phone = formatPhoneNumber($row['vendor_phone']);
-        $vendor_extension = htmlentities($row['vendor_extension']);
-        $vendor_email = htmlentities($row['vendor_email']);
-        $vendor_website = htmlentities($row['vendor_website']);
-        $vendor_hours = htmlentities($row['vendor_hours']);
-        $vendor_sla = htmlentities($row['vendor_sla']);
-        $vendor_code = htmlentities($row['vendor_code']);
-        $vendor_notes = htmlentities($row['vendor_notes']);
+        $vendor_extension = nullable_htmlentities($row['vendor_extension']);
+        $vendor_email = nullable_htmlentities($row['vendor_email']);
+        $vendor_website = nullable_htmlentities($row['vendor_website']);
+        $vendor_hours = nullable_htmlentities($row['vendor_hours']);
+        $vendor_sla = nullable_htmlentities($row['vendor_sla']);
+        $vendor_code = nullable_htmlentities($row['vendor_code']);
+        $vendor_notes = nullable_htmlentities($row['vendor_notes']);
 
-        $location_name = htmlentities($row['location_name']);
-        $location_address = htmlentities($row['location_address']);
-        $location_city = htmlentities($row['location_city']);
-        $location_state = htmlentities($row['location_state']);
-        $location_zip = htmlentities($row['location_zip']);
+        $location_name = nullable_htmlentities($row['location_name']);
+        $location_address = nullable_htmlentities($row['location_address']);
+        $location_city = nullable_htmlentities($row['location_city']);
+        $location_state = nullable_htmlentities($row['location_state']);
+        $location_zip = nullable_htmlentities($row['location_zip']);
         $location_phone = formatPhoneNumber($row['location_phone']);
 
         //  REMOVING - doesn't work properly now that a ticket might be created by an agent or client
@@ -124,7 +124,7 @@ if (isset($_GET['ticket_id'])) {
         //$ticket_created_by = intval($row['ticket_created_by']);
         //$ticket_created_by_sql = mysqli_query($mysqli, "SELECT user_name FROM users WHERE user_id = $ticket_created_by");
         //$row = mysqli_fetch_array($ticket_created_by_sql);
-        //$ticket_created_by_display = htmlentities($row['user_name']);
+        //$ticket_created_by_display = nullable_htmlentities($row['user_name']);
 
         if ($contact_id) {
             //Get Contact Ticket Stats
@@ -144,7 +144,7 @@ if (isset($_GET['ticket_id'])) {
         //Get Total Ticket Time
         $ticket_total_reply_time = mysqli_query($mysqli, "SELECT SEC_TO_TIME(SUM(TIME_TO_SEC(ticket_reply_time_worked))) AS ticket_total_reply_time FROM ticket_replies WHERE ticket_reply_archived_at IS NULL AND ticket_reply_ticket_id = $ticket_id");
         $row = mysqli_fetch_array($ticket_total_reply_time);
-        $ticket_total_reply_time = htmlentities($row['ticket_total_reply_time']);
+        $ticket_total_reply_time = nullable_htmlentities($row['ticket_total_reply_time']);
 
         //Client Tags
         $client_tag_name_display_array = array();
@@ -153,9 +153,9 @@ if (isset($_GET['ticket_id'])) {
         while ($row = mysqli_fetch_array($sql_client_tags)) {
 
             $client_tag_id = intval($row['tag_id']);
-            $client_tag_name = htmlentities($row['tag_name']);
-            $client_tag_color = htmlentities($row['tag_color']);
-            $client_tag_icon = htmlentities($row['tag_icon']);
+            $client_tag_name = nullable_htmlentities($row['tag_name']);
+            $client_tag_color = nullable_htmlentities($row['tag_color']);
+            $client_tag_icon = nullable_htmlentities($row['tag_icon']);
             if (empty($client_tag_icon)) {
                 $client_tag_icon = "tag";
             }
@@ -271,8 +271,8 @@ if (isset($_GET['ticket_id'])) {
 
                         <?php
                         while ($ticket_attachment = mysqli_fetch_array($sql_ticket_attachments)) {
-                            $name = htmlentities($ticket_attachment['ticket_attachment_name']);
-                            $ref_name = htmlentities($ticket_attachment['ticket_attachment_reference_name']);
+                            $name = nullable_htmlentities($ticket_attachment['ticket_attachment_name']);
+                            $ref_name = nullable_htmlentities($ticket_attachment['ticket_attachment_reference_name']);
                             echo "<a target='_blank' href='uploads/tickets/$ticket_id/$ref_name'>$name</a><br>";
                         }
                         ?>
@@ -344,20 +344,20 @@ if (isset($_GET['ticket_id'])) {
                     $ticket_reply_id = intval($row['ticket_reply_id']);
                     $ticket_reply = $purifier->purify($row['ticket_reply']);
                     //$ticket_reply = $row['ticket_reply'];
-                    $ticket_reply_type = htmlentities($row['ticket_reply_type']);
-                    $ticket_reply_created_at = htmlentities($row['ticket_reply_created_at']);
-                    $ticket_reply_updated_at = htmlentities($row['ticket_reply_updated_at']);
+                    $ticket_reply_type = nullable_htmlentities($row['ticket_reply_type']);
+                    $ticket_reply_created_at = nullable_htmlentities($row['ticket_reply_created_at']);
+                    $ticket_reply_updated_at = nullable_htmlentities($row['ticket_reply_updated_at']);
                     $ticket_reply_by = intval($row['ticket_reply_by']);
 
                     if ($ticket_reply_type == "Client") {
-                        $ticket_reply_by_display = htmlentities($row['contact_name']);
+                        $ticket_reply_by_display = nullable_htmlentities($row['contact_name']);
                         $user_initials = initials($row['contact_name']);
-                        $user_avatar = htmlentities($row['contact_photo']);
+                        $user_avatar = nullable_htmlentities($row['contact_photo']);
                         $avatar_link = "uploads/clients/$client_id/$user_avatar";
                     } else {
-                        $ticket_reply_by_display = htmlentities($row['user_name']);
+                        $ticket_reply_by_display = nullable_htmlentities($row['user_name']);
                         $user_id = intval($row['user_id']);
-                        $user_avatar = htmlentities($row['user_avatar']);
+                        $user_avatar = nullable_htmlentities($row['user_avatar']);
                         $user_initials = initials($row['user_name']);
                         $avatar_link = "uploads/users/$user_id/$user_avatar";
                         $ticket_reply_time_worked = date_create($row['ticket_reply_time_worked']);
@@ -425,8 +425,8 @@ if (isset($_GET['ticket_id'])) {
 
                             <?php
                             while ($ticket_attachment = mysqli_fetch_array($sql_ticket_reply_attachments)) {
-                                $name = htmlentities($ticket_attachment['ticket_attachment_name']);
-                                $ref_name = htmlentities($ticket_attachment['ticket_attachment_reference_name']);
+                                $name = nullable_htmlentities($ticket_attachment['ticket_attachment_name']);
+                                $ref_name = nullable_htmlentities($ticket_attachment['ticket_attachment_reference_name']);
                                 echo "<a target='_blank' href='uploads/tickets/$ticket_id/$ref_name'>$name</a><br>";
                             }
                             ?>
@@ -510,7 +510,7 @@ if (isset($_GET['ticket_id'])) {
                     if ($ticket_status == "Closed") {
                         $sql_closed_by = mysqli_query($mysqli, "SELECT * FROM tickets, users WHERE ticket_closed_by = user_id");
                         $row = mysqli_fetch_array($sql_closed_by);
-                        $ticket_closed_by_display = htmlentities($row['user_name']); ?>
+                        $ticket_closed_by_display = nullable_htmlentities($row['user_name']); ?>
                         <div class="ml-1"><i class="fa fa-fw fa-user text-secondary mr-2 mb-2"></i>Closed by: <?php echo ucwords($ticket_closed_by_display); ?></a></div>
                         <div class="ml-1"><i class="fa fa-fw fa-comment-dots text-secondary mr-2 mb-2"></i>Feedback: <?php echo $ticket_feedback; ?></a></div>
                     <?php } ?>
@@ -571,12 +571,12 @@ if (isset($_GET['ticket_id'])) {
                                                 // Query is run from client_assets.php
                                                 while ($row = mysqli_fetch_array($sql_asset_tickets)) {
                                                     $service_ticket_id = intval($row['ticket_id']);
-                                                    $service_ticket_prefix = htmlentities($row['ticket_prefix']);
+                                                    $service_ticket_prefix = nullable_htmlentities($row['ticket_prefix']);
                                                     $service_ticket_number = intval($row['ticket_number']);
-                                                    $service_ticket_subject = htmlentities($row['ticket_subject']);
-                                                    $service_ticket_status = htmlentities($row['ticket_status']);
-                                                    $service_ticket_created_at = htmlentities($row['ticket_created_at']);
-                                                    $service_ticket_updated_at = htmlentities($row['ticket_updated_at']);
+                                                    $service_ticket_subject = nullable_htmlentities($row['ticket_subject']);
+                                                    $service_ticket_status = nullable_htmlentities($row['ticket_status']);
+                                                    $service_ticket_created_at = nullable_htmlentities($row['ticket_created_at']);
+                                                    $service_ticket_updated_at = nullable_htmlentities($row['ticket_updated_at']);
                                                     ?>
                                                     <p>
                                                         <i class="fas fa-fw fa-ticket-alt"></i>
@@ -651,7 +651,7 @@ if (isset($_GET['ticket_id'])) {
 
                                 while ($row = mysqli_fetch_array($sql_assign_to_select)) {
                                     $user_id = intval($row['user_id']);
-                                    $user_name = htmlentities($row['user_name']); ?>
+                                    $user_name = nullable_htmlentities($row['user_name']); ?>
                                     <option <?php if ($ticket_assigned_to == $user_id) { echo "selected"; } ?> value="<?php echo $user_id; ?>"><?php echo $user_name; ?></option>
                                 <?php } ?>
                             </select>
diff --git a/ticket_add_modal.php b/ticket_add_modal.php
index 3a891768..7b489dad 100644
--- a/ticket_add_modal.php
+++ b/ticket_add_modal.php
@@ -63,7 +63,7 @@
                                             $sql = mysqli_query($mysqli, "SELECT * FROM clients ORDER BY client_name ASC");
                                             while ($row = mysqli_fetch_array($sql)) {
                                                 $client_id = intval($row['client_id']);
-                                                $client_name = htmlentities($row['client_name']); ?>
+                                                $client_name = nullable_htmlentities($row['client_name']); ?>
                                                 <option value="<?php echo $client_id; ?>"><?php echo $client_name; ?></option>
 
                                             <?php } ?>
@@ -105,7 +105,7 @@
                                         );
                                         while ($row = mysqli_fetch_array($sql)) {
                                             $user_id = intval($row['user_id']);
-                                            $user_name = htmlentities($row['user_name']); ?>
+                                            $user_name = nullable_htmlentities($row['user_name']); ?>
                                             <option <?php if ($session_user_id == $user_id) { echo "selected"; } ?> value="<?php echo $user_id; ?>"><?php echo $user_name; ?></option>
                                         <?php } ?>
                                     </select>
@@ -131,7 +131,7 @@
                                             $sql = mysqli_query($mysqli, "SELECT * FROM contacts WHERE contact_client_id = $client_id AND contact_archived_at IS NULL ORDER BY contact_name ASC");
                                             while ($row = mysqli_fetch_array($sql)) {
                                                 $contact_id = intval($row['contact_id']);
-                                                $contact_name = htmlentities($row['contact_name']); ?>
+                                                $contact_name = nullable_htmlentities($row['contact_name']); ?>
                                                 <option value="<?php echo $contact_id; ?>" <?php if ($primary_contact == $contact_id) { echo "selected"; } ?>><?php echo "$contact_name"; ?></option>
 
                                             <?php } ?>
@@ -155,7 +155,7 @@
                                             $sql_assets = mysqli_query($mysqli, "SELECT * FROM assets WHERE asset_client_id = $client_id AND asset_archived_at IS NULL ORDER BY asset_name ASC");
                                             while ($row = mysqli_fetch_array($sql_assets)) {
                                                 $asset_id_select = intval($row['asset_id']);
-                                                $asset_name_select = htmlentities($row['asset_name']); ?>
+                                                $asset_name_select = nullable_htmlentities($row['asset_name']); ?>
                                                 <option value="<?php echo $asset_id_select; ?>"><?php echo $asset_name_select; ?></option>
 
                                             <?php } ?>
@@ -180,7 +180,7 @@
                                             $sql_vendors = mysqli_query($mysqli, "SELECT * FROM vendors WHERE vendor_client_id = $client_id AND vendor_template = 0 AND vendor_archived_at IS NULL ORDER BY vendor_name ASC");
                                             while ($row = mysqli_fetch_array($sql_vendors)) {
                                                 $vendor_id_select = intval($row['vendor_id']);
-                                                $vendor_name_select = htmlentities($row['vendor_name']); ?>
+                                                $vendor_name_select = nullable_htmlentities($row['vendor_name']); ?>
                                                 <option value="<?php echo $vendor_id_select; ?>"><?php echo $vendor_name_select; ?></option>
 
                                             <?php } ?>
diff --git a/ticket_edit_modal.php b/ticket_edit_modal.php
index cd8a92ed..e0134114 100644
--- a/ticket_edit_modal.php
+++ b/ticket_edit_modal.php
@@ -80,7 +80,7 @@
                                         );
                                         while ($row = mysqli_fetch_array($sql_assign_to_select)) {
                                             $user_id = intval($row['user_id']);
-                                            $user_name = htmlentities($row['user_name']);
+                                            $user_name = nullable_htmlentities($row['user_name']);
                                             ?>
                                             <option <?php if ($ticket_assigned_to == $user_id) { echo "selected"; } ?> value="<?php echo $user_id; ?>"><?php echo $user_name; ?></option>
 
@@ -108,7 +108,7 @@
                                         $sql_client_contacts_select = mysqli_query($mysqli, "SELECT * FROM contacts WHERE contact_client_id = $client_id ORDER BY contact_name ASC");
                                         while ($row = mysqli_fetch_array($sql_client_contacts_select)) {
                                             $contact_id_select = intval($row['contact_id']);
-                                            $contact_name_select = htmlentities($row['contact_name']);
+                                            $contact_name_select = nullable_htmlentities($row['contact_name']);
                                             ?>
                                             <option <?php if ($contact_id_select == $contact_id) { echo "selected"; } ?> value="<?php echo $contact_id_select; ?>"><?php echo $contact_name_select; ?></option>
 
@@ -136,7 +136,7 @@
                                         $sql_assets = mysqli_query($mysqli, "SELECT * FROM assets WHERE asset_client_id = $client_id ORDER BY asset_name ASC");
                                         while ($row = mysqli_fetch_array($sql_assets)) {
                                             $asset_id_select = intval($row['asset_id']);
-                                            $asset_name_select = htmlentities($row['asset_name']);
+                                            $asset_name_select = nullable_htmlentities($row['asset_name']);
                                             ?>
                                             <option <?php if ($asset_id == $asset_id_select) { echo "selected"; } ?> value="<?php echo $asset_id_select; ?>"><?php echo $asset_name_select; ?></option>
 
@@ -164,7 +164,7 @@
                                         $sql_vendors = mysqli_query($mysqli, "SELECT * FROM vendors WHERE vendor_client_id = $client_id AND vendor_template = 0 ORDER BY vendor_name ASC");
                                         while ($row = mysqli_fetch_array($sql_vendors)) {
                                             $vendor_id_select = intval($row['vendor_id']);
-                                            $vendor_name_select = htmlentities($row['vendor_name']);
+                                            $vendor_name_select = nullable_htmlentities($row['vendor_name']);
                                             ?>
                                             <option <?php if ($vendor_id == $vendor_id_select) { echo "selected"; } ?> value="<?php echo $vendor_id_select; ?>"><?php echo $vendor_name_select; ?></option>
 
diff --git a/ticket_invoice_add_modal.php b/ticket_invoice_add_modal.php
index c8488c6e..10bdc40c 100644
--- a/ticket_invoice_add_modal.php
+++ b/ticket_invoice_add_modal.php
@@ -26,12 +26,12 @@
                                 $sql_invoices = mysqli_query($mysqli, "SELECT * FROM invoices WHERE invoice_status NOT LIKE 'Paid' AND invoice_client_id = $client_id ORDER BY invoice_number ASC");
                                 while ($row = mysqli_fetch_array($sql_invoices)) {
                                     $invoice_id = intval($row['invoice_id']);
-                                    $invoice_prefix = htmlentities($row['invoice_prefix']);
+                                    $invoice_prefix = nullable_htmlentities($row['invoice_prefix']);
                                     $invoice_number = intval($row['invoice_number']);
-                                    $invoice_scope = htmlentities($row['invoice_scope']);
-                                    $invoice_satus = htmlentities($row['invoice_status']);
-                                    $invoice_date = htmlentities($row['invoice_date']);
-                                    $invoice_due = htmlentities($row['invoice_due']);
+                                    $invoice_scope = nullable_htmlentities($row['invoice_scope']);
+                                    $invoice_satus = nullable_htmlentities($row['invoice_status']);
+                                    $invoice_date = nullable_htmlentities($row['invoice_date']);
+                                    $invoice_due = nullable_htmlentities($row['invoice_due']);
                                     $invoice_amount = floatval($row['invoice_amount']);
 
                                     ?>
@@ -67,7 +67,7 @@
                                 $sql = mysqli_query($mysqli, "SELECT * FROM categories WHERE category_type = 'Income' AND category_archived_at IS NULL ORDER BY category_name ASC");
                                 while ($row = mysqli_fetch_array($sql)) {
                                     $category_id = intval($row['category_id']);
-                                    $category_name = htmlentities($row['category_name']);
+                                    $category_name = nullable_htmlentities($row['category_name']);
                                     ?>
                                     <option value="<?php echo $category_id; ?>"><?php echo $category_name; ?></option>
 
@@ -154,7 +154,7 @@
                                 $taxes_sql = mysqli_query($mysqli, "SELECT * FROM taxes WHERE tax_archived_at IS NULL ORDER BY tax_name ASC");
                                 while ($row = mysqli_fetch_array($taxes_sql)) {
                                     $tax_id_select = intval($row['tax_id']);
-                                    $tax_name = htmlentities($row['tax_name']);
+                                    $tax_name = nullable_htmlentities($row['tax_name']);
                                     $tax_percent = floatval($row['tax_percent']);
                                     ?>
                                     <option value="<?php echo $tax_id_select; ?>"><?php echo "$tax_name $tax_percent%"; ?></option>
diff --git a/ticket_reply_edit_modal.php b/ticket_reply_edit_modal.php
index 9353e622..2059ecae 100644
--- a/ticket_reply_edit_modal.php
+++ b/ticket_reply_edit_modal.php
@@ -14,7 +14,7 @@
                 <div class="modal-body bg-white">
 
                     <div class="form-group">
-                        <textarea class="form-control tinymce" name="ticket_reply"><?php echo htmlentities($ticket_reply); ?></textarea>
+                        <textarea class="form-control tinymce" name="ticket_reply"><?php echo nullable_htmlentities($ticket_reply); ?></textarea>
                     </div>
 
                     <?php if (!empty($ticket_reply_time_worked)) { ?>
diff --git a/tickets.php b/tickets.php
index 3188a79a..de6076fe 100644
--- a/tickets.php
+++ b/tickets.php
@@ -103,7 +103,7 @@ $user_active_assigned_tickets = intval($row['total_tickets_assigned']);
                 <div class="row">
                     <div class="col-sm-4">
                         <div class="input-group">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Tickets">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Tickets">
                             <div class="input-group-append">
                                 <button class="btn btn-secondary" type="button" data-toggle="collapse"
                                         data-target="#advancedFilter"><i class="fas fa-filter"></i></button>
@@ -176,13 +176,13 @@ $user_active_assigned_tickets = intval($row['total_tickets_assigned']);
                         <div class="col-md-2">
                             <div class="form-group">
                                 <label>Date From</label>
-                                <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo htmlentities($dtf); ?>">
+                                <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo nullable_htmlentities($dtf); ?>">
                             </div>
                         </div>
                         <div class="col-md-2">
                             <div class="form-group">
                                 <label>Date To</label>
-                                <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo htmlentities($dtt); ?>">
+                                <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo nullable_htmlentities($dtt); ?>">
                             </div>
                         </div>
                         <div class="col-md-2">
@@ -206,7 +206,7 @@ $user_active_assigned_tickets = intval($row['total_tickets_assigned']);
                                     $sql_assign_to = mysqli_query($mysqli, "SELECT * FROM users WHERE user_archived_at IS NULL ORDER BY user_name ASC");
                                     while ($row = mysqli_fetch_array($sql_assign_to)) {
                                         $user_id = intval($row['user_id']);
-                                        $user_name = htmlentities($row['user_name']);
+                                        $user_name = nullable_htmlentities($row['user_name']);
                                         ?>
                                         <option <?php if ($ticket_assigned_filter == $user_id) { echo "selected"; } ?> value="<?php echo $user_id; ?>"><?php echo $user_name; ?></option>
                                         <?php
@@ -258,14 +258,14 @@ $user_active_assigned_tickets = intval($row['total_tickets_assigned']);
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $ticket_id = intval($row['ticket_id']);
-                        $ticket_prefix = htmlentities($row['ticket_prefix']);
+                        $ticket_prefix = nullable_htmlentities($row['ticket_prefix']);
                         $ticket_number = intval($row['ticket_number']);
-                        $ticket_subject = htmlentities($row['ticket_subject']);
-                        $ticket_details = htmlentities($row['ticket_details']);
-                        $ticket_priority = htmlentities($row['ticket_priority']);
-                        $ticket_status = htmlentities($row['ticket_status']);
-                        $ticket_created_at = htmlentities($row['ticket_created_at']);
-                        $ticket_updated_at = htmlentities($row['ticket_updated_at']);
+                        $ticket_subject = nullable_htmlentities($row['ticket_subject']);
+                        $ticket_details = nullable_htmlentities($row['ticket_details']);
+                        $ticket_priority = nullable_htmlentities($row['ticket_priority']);
+                        $ticket_status = nullable_htmlentities($row['ticket_status']);
+                        $ticket_created_at = nullable_htmlentities($row['ticket_created_at']);
+                        $ticket_updated_at = nullable_htmlentities($row['ticket_updated_at']);
                         if (empty($ticket_updated_at)) {
                             if ($ticket_status == "Closed") {
                                 $ticket_updated_at_display = "<p>Never</p>";
@@ -275,15 +275,15 @@ $user_active_assigned_tickets = intval($row['total_tickets_assigned']);
                         } else {
                             $ticket_updated_at_display = $ticket_updated_at;
                         }
-                        $ticket_closed_at = htmlentities($row['ticket_closed_at']);
+                        $ticket_closed_at = nullable_htmlentities($row['ticket_closed_at']);
                         $client_id = intval($row['client_id']);
-                        $client_name = htmlentities($row['client_name']);
+                        $client_name = nullable_htmlentities($row['client_name']);
                         $contact_id = intval($row['contact_id']);
-                        $contact_name = htmlentities($row['contact_name']);
-                        $contact_title = htmlentities($row['contact_title']);
-                        $contact_email = htmlentities($row['contact_email']);
+                        $contact_name = nullable_htmlentities($row['contact_name']);
+                        $contact_title = nullable_htmlentities($row['contact_title']);
+                        $contact_email = nullable_htmlentities($row['contact_email']);
                         $contact_phone = formatPhoneNumber($row['contact_phone']);
-                        $contact_extension = htmlentities($row['contact_extension']);
+                        $contact_extension = nullable_htmlentities($row['contact_extension']);
                         $contact_mobile = formatPhoneNumber($row['contact_mobile']);
                         if ($ticket_status == "Open") {
                             $ticket_status_color = "primary";
@@ -308,7 +308,7 @@ $user_active_assigned_tickets = intval($row['total_tickets_assigned']);
                                 $ticket_assigned_to_display = "<p class='text-danger'>Not Assigned</p>";
                             }
                         } else {
-                            $ticket_assigned_to_display = htmlentities($row['user_name']);
+                            $ticket_assigned_to_display = nullable_htmlentities($row['user_name']);
                         }
 
                         if (empty($contact_name)) {
diff --git a/top_nav.php b/top_nav.php
index d60f6c08..fa4155b5 100644
--- a/top_nav.php
+++ b/top_nav.php
@@ -1,5 +1,5 @@
 <!-- Navbar -->
-<nav class="main-header navbar navbar-expand navbar-<?php echo htmlentities($config_theme); ?> navbar-dark">
+<nav class="main-header navbar navbar-expand navbar-<?php echo nullable_htmlentities($config_theme); ?> navbar-dark">
 
   <!-- Left navbar links -->
   <ul class="navbar-nav">
@@ -15,7 +15,7 @@
     <!-- SEARCH FORM -->
     <form class="form-inline" action="global_search.php">
       <div class="input-group input-group-sm">
-        <input class="form-control form-control-navbar" type="search" placeholder="Search" name="query" value="<?php if (isset($_GET['query'])) { echo htmlentities($_GET['query']); } ?>">
+        <input class="form-control form-control-navbar" type="search" placeholder="Search" name="query" value="<?php if (isset($_GET['query'])) { echo nullable_htmlentities($_GET['query']); } ?>">
         <div class="input-group-append">
           <button class="btn btn-navbar" type="submit">
             <i class="fas fa-search"></i>
@@ -58,8 +58,8 @@
         <?php
         while ($row = mysqli_fetch_array($sql_notifications)) {
             $notification_id = intval($row['notification_id']);
-            $notification_type = htmlentities($row['notification_type']);
-            $notification = htmlentities($row['notification']);
+            $notification_type = nullable_htmlentities($row['notification_type']);
+            $notification = nullable_htmlentities($row['notification']);
             $notification_timestamp = date('M d g:ia',strtotime($row['notification_timestamp']));
             $notification_client_id = intval($row['notification_client_id']);
             if($notification_client_id > 0){
@@ -114,7 +114,7 @@
         <?php }else{ ?>
         <img src="<?php echo "uploads/users/$session_user_id/$session_avatar"; ?>" class="user-image img-circle">
         <?php } ?>
-        <span class="d-none d-md-inline dropdown-toggle"><?php echo stripslashes(htmlentities($session_name)); ?></span>
+        <span class="d-none d-md-inline dropdown-toggle"><?php echo stripslashes(nullable_htmlentities($session_name)); ?></span>
       </a>
       <ul class="dropdown-menu dropdown-menu-lg dropdown-menu-right">
         <!-- User image -->
@@ -126,8 +126,8 @@
           	<img src="<?php echo "uploads/users/$session_user_id/$session_avatar"; ?>" class="img-circle">
 					<?php } ?>
           <p>
-            <?php echo stripslashes(htmlentities($session_name)); ?>
-            <small><?php echo htmlentities($session_user_role_display); ?></small>
+            <?php echo stripslashes(nullable_htmlentities($session_name)); ?>
+            <small><?php echo nullable_htmlentities($session_user_role_display); ?></small>
           </p>
         </li>
         <!-- Menu Footer-->
diff --git a/transfer_add_modal.php b/transfer_add_modal.php
index f2234441..3dac2ab2 100644
--- a/transfer_add_modal.php
+++ b/transfer_add_modal.php
@@ -47,7 +47,7 @@
                                 $sql = mysqli_query($mysqli, "SELECT * FROM accounts WHERE account_archived_at IS NULL ORDER BY account_name ASC");
                                 while ($row = mysqli_fetch_array($sql)) {
                                     $account_id = intval($row['account_id']);
-                                    $account_name = htmlentities($row['account_name']);
+                                    $account_name = nullable_htmlentities($row['account_name']);
                                     $opening_balance = floatval($row['opening_balance']);
 
                                     $sql_payments = mysqli_query($mysqli, "SELECT SUM(payment_amount) AS total_payments FROM payments WHERE payment_account_id = $account_id");
@@ -85,7 +85,7 @@
                                 $sql = mysqli_query($mysqli, "SELECT * FROM accounts WHERE account_archived_at IS NULL ORDER BY account_name ASC");
                                 while ($row = mysqli_fetch_array($sql)) {
                                     $account_id = intval($row['account_id']);
-                                    $account_name = htmlentities($row['account_name']);
+                                    $account_name = nullable_htmlentities($row['account_name']);
                                     $opening_balance = floatval($row['opening_balance']);
 
                                     $sql_payments = mysqli_query($mysqli, "SELECT SUM(payment_amount) AS total_payments FROM payments WHERE payment_account_id = $account_id");
diff --git a/transfer_edit_modal.php b/transfer_edit_modal.php
index d73c8328..2f648bf8 100644
--- a/transfer_edit_modal.php
+++ b/transfer_edit_modal.php
@@ -50,7 +50,7 @@
                                 $sql_accounts = mysqli_query($mysqli, "SELECT * FROM accounts WHERE (account_archived_at > '$transfer_created_at' OR account_archived_at IS NULL) ORDER BY account_name ASC");
                                 while ($row = mysqli_fetch_array($sql_accounts)) {
                                     $account_id_select = intval($row['account_id']);
-                                    $account_name_select = htmlentities($row['account_name']);
+                                    $account_name_select = nullable_htmlentities($row['account_name']);
                                     $opening_balance = floatval($row['opening_balance']);
 
                                     $sql_payments = mysqli_query($mysqli, "SELECT SUM(payment_amount) AS total_payments FROM payments WHERE payment_account_id = $account_id_select");
@@ -88,7 +88,7 @@
                                 $sql2 = mysqli_query($mysqli, "SELECT * FROM accounts WHERE (account_archived_at > '$transfer_created_at' OR account_archived_at IS NULL) ORDER BY account_name ASC");
                                 while ($row = mysqli_fetch_array($sql2)) {
                                     $account_id2 = intval($row['account_id']);
-                                    $account_name = htmlentities($row['account_name']);
+                                    $account_name = nullable_htmlentities($row['account_name']);
                                     $opening_balance = floatval($row['opening_balance']);
 
                                     $sql_payments = mysqli_query($mysqli, "SELECT SUM(payment_amount) AS total_payments FROM payments WHERE payment_account_id = $account_id2");
diff --git a/transfers.php b/transfers.php
index cb54d994..b14291d8 100644
--- a/transfers.php
+++ b/transfers.php
@@ -35,7 +35,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                 <div class="row">
                     <div class="col-sm-4">
                         <div class="input-group">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Transfers">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Transfers">
                             <div class="input-group-append">
                                 <button class="btn btn-secondary" type="button" data-toggle="collapse" data-target="#advancedFilter"><i class="fas fa-filter"></i></button>
                                 <button class="btn btn-primary"><i class="fa fa-search"></i></button>
@@ -64,13 +64,13 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                         <div class="col-md-2">
                             <div class="form-group">
                                 <label>Date From</label>
-                                <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo htmlentities($dtf); ?>">
+                                <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo nullable_htmlentities($dtf); ?>">
                             </div>
                         </div>
                         <div class="col-md-2">
                             <div class="form-group">
                                 <label>Date To</label>
-                                <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo htmlentities($dtt); ?>">
+                                <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo nullable_htmlentities($dtt); ?>">
                             </div>
                         </div>
                     </div>
@@ -94,27 +94,27 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $transfer_id = intval($row['transfer_id']);
-                        $transfer_date = htmlentities($row['transfer_date']);
+                        $transfer_date = nullable_htmlentities($row['transfer_date']);
                         $transfer_account_from = intval($row['transfer_account_from']);
                         $transfer_account_to = intval($row['transfer_account_to']);
                         $transfer_amount = floatval($row['transfer_amount']);
-                        $transfer_notes = htmlentities($row['transfer_notes']);
+                        $transfer_notes = nullable_htmlentities($row['transfer_notes']);
                         if(empty($transfer_notes)) {
                             $transfer_notes_display = "-";
                         } else {
                             $transfer_notes_display = nl2br($transfer_notes);
                         }
-                        $transfer_created_at = htmlentities($row['transfer_created_at']);
+                        $transfer_created_at = nullable_htmlentities($row['transfer_created_at']);
                         $expense_id = intval($row['transfer_expense_id']);
                         $revenue_id = intval($row['transfer_revenue_id']);
 
                         $sql_from = mysqli_query($mysqli, "SELECT * FROM accounts WHERE account_id = $transfer_account_from");
                         $row = mysqli_fetch_array($sql_from);
-                        $account_name_from = htmlentities($row['account_name']);
+                        $account_name_from = nullable_htmlentities($row['account_name']);
 
                         $sql_to = mysqli_query($mysqli, "SELECT * FROM accounts WHERE account_id = $transfer_account_to");
                         $row = mysqli_fetch_array($sql_to);
-                        $account_name_to = htmlentities($row['account_name']);
+                        $account_name_to = nullable_htmlentities($row['account_name']);
 
                         ?>
                         <tr>
diff --git a/trip_add_modal.php b/trip_add_modal.php
index d85c6a4a..da4107ac 100644
--- a/trip_add_modal.php
+++ b/trip_add_modal.php
@@ -76,7 +76,7 @@
                                 $sql = mysqli_query($mysqli, "SELECT * FROM users ORDER BY user_name ASC");
                                 while ($row = mysqli_fetch_array($sql)) {
                                     $user_id = intval($row['user_id']);
-                                    $user_name = htmlentities($row['user_name']);
+                                    $user_name = nullable_htmlentities($row['user_name']);
                                     ?>
                                     <option <?php if ($session_user_id == $user_id) { echo "selected"; } ?> value="<?php echo $user_id; ?>"><?php echo $user_name; ?></option>
 
@@ -104,7 +104,7 @@
                                     $sql = mysqli_query($mysqli, "SELECT * FROM clients ORDER BY client_name ASC");
                                     while ($row = mysqli_fetch_array($sql)) {
                                         $client_id = intval($row['client_id']);
-                                        $client_name = htmlentities($row['client_name']);
+                                        $client_name = nullable_htmlentities($row['client_name']);
                                         ?>
                                         <option value="<?php echo $client_id; ?>"><?php echo $client_name; ?></option>
 
diff --git a/trip_copy_modal.php b/trip_copy_modal.php
index 514e1e22..a91f675c 100644
--- a/trip_copy_modal.php
+++ b/trip_copy_modal.php
@@ -77,7 +77,7 @@
                                 $sql_trips = mysqli_query($mysqli, "SELECT * FROM users ORDER BY user_name ASC");
                                 while ($row = mysqli_fetch_array($sql_trips)) {
                                     $user_id_select = intval($row['user_id']);
-                                    $user_name_select = htmlentities($row['user_name']);
+                                    $user_name_select = nullable_htmlentities($row['user_name']);
                                     ?>
                                     <option <?php if ($trip_user_id == $user_id_select) { echo "selected"; } ?> value="<?php echo $user_id_select; ?>"><?php echo $user_name_select; ?></option>
 
@@ -103,7 +103,7 @@
                                     $sql_clients = mysqli_query($mysqli, "SELECT * FROM clients ORDER BY client_name ASC");
                                     while ($row = mysqli_fetch_array($sql_clients)) {
                                         $client_id_select = intval($row['client_id']);
-                                        $client_name_select = htmlentities($row['client_name']);
+                                        $client_name_select = nullable_htmlentities($row['client_name']);
                                         ?>
                                         <option <?php if ($client_id == $client_id_select) { echo "selected"; } ?> value="<?php echo $client_id_select; ?>"><?php echo $client_name_select; ?></option>
 
diff --git a/trip_edit_modal.php b/trip_edit_modal.php
index 8bb5709b..8f326457 100644
--- a/trip_edit_modal.php
+++ b/trip_edit_modal.php
@@ -79,7 +79,7 @@
                                 $sql_trips = mysqli_query($mysqli, "SELECT * FROM users ORDER BY user_name ASC");
                                 while ($row = mysqli_fetch_array($sql_trips)) {
                                     $user_id_select = intval($row['user_id']);
-                                    $user_name_select = htmlentities($row['user_name']);
+                                    $user_name_select = nullable_htmlentities($row['user_name']);
                                     ?>
                                     <option <?php if ($trip_user_id == $user_id_select) { echo "selected"; } ?> value="<?php echo $user_id_select; ?>"><?php echo $user_name_select; ?></option>
 
@@ -106,7 +106,7 @@
                                     $sql_clients = mysqli_query($mysqli, "SELECT * FROM clients ORDER BY client_name ASC");
                                     while ($row = mysqli_fetch_array($sql_clients)) {
                                         $client_id_select = intval($row['client_id']);
-                                        $client_name_select = htmlentities($row['client_name']);
+                                        $client_name_select = nullable_htmlentities($row['client_name']);
                                         ?>
                                         <option <?php if ($client_id == $client_id_select) { echo "selected"; } ?> value="<?php echo $client_id_select; ?>"><?php echo $client_name_select; ?></option>
 
diff --git a/trip_export_modal.php b/trip_export_modal.php
index 0785dd93..304f6491 100644
--- a/trip_export_modal.php
+++ b/trip_export_modal.php
@@ -18,7 +18,7 @@
                             <div class="input-group-prepend">
                                 <span class="input-group-text"><i class="fa fa-fw fa-calendar"></i></span>
                             </div>
-                            <input type="date" class="form-control" name="date_from" max="2999-12-31" value="<?php echo htmlentities($dtf); ?>">
+                            <input type="date" class="form-control" name="date_from" max="2999-12-31" value="<?php echo nullable_htmlentities($dtf); ?>">
                         </div>
                     </div>
 
@@ -28,7 +28,7 @@
                             <div class="input-group-prepend">
                                 <span class="input-group-text"><i class="fa fa-fw fa-calendar"></i></span>
                             </div>
-                            <input type="date" class="form-control" name="date_to" max="2999-12-31" value="<?php echo htmlentities($dtt); ?>">
+                            <input type="date" class="form-control" name="date_to" max="2999-12-31" value="<?php echo nullable_htmlentities($dtt); ?>">
                         </div>
                     </div>
 
diff --git a/trips.php b/trips.php
index d1b6ef68..b9a3c591 100644
--- a/trips.php
+++ b/trips.php
@@ -36,7 +36,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                 <div class="row">
                     <div class="col-sm-4">
                         <div class="input-group">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(htmlentities($q)); } ?>" placeholder="Search Trips">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Trips">
                             <div class="input-group-append">
                                 <button class="btn btn-secondary" type="button" data-toggle="collapse" data-target="#advancedFilter"><i class="fas fa-filter"></i></button>
                                 <button class="btn btn-primary"><i class="fa fa-search"></i></button>
@@ -70,13 +70,13 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                         <div class="col-md-2">
                             <div class="form-group">
                                 <label>Date From</label>
-                                <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo htmlentities($dtf); ?>">
+                                <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo nullable_htmlentities($dtf); ?>">
                             </div>
                         </div>
                         <div class="col-md-2">
                             <div class="form-group">
                                 <label>Date To</label>
-                                <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo htmlentities($dtt); ?>">
+                                <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo nullable_htmlentities($dtt); ?>">
                             </div>
                         </div>
                     </div>
@@ -102,15 +102,15 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $trip_id = intval($row['trip_id']);
-                        $trip_date = htmlentities($row['trip_date']);
-                        $trip_purpose = htmlentities($row['trip_purpose']);
-                        $trip_source = htmlentities($row['trip_source']);
-                        $trip_destination = htmlentities($row['trip_destination']);
+                        $trip_date = nullable_htmlentities($row['trip_date']);
+                        $trip_purpose = nullable_htmlentities($row['trip_purpose']);
+                        $trip_source = nullable_htmlentities($row['trip_source']);
+                        $trip_destination = nullable_htmlentities($row['trip_destination']);
                         $trip_miles = floatval($row['trip_miles']);
                         $trip_user_id = intval($row['trip_user_id']);
-                        $round_trip = htmlentities($row['round_trip']);
+                        $round_trip = nullable_htmlentities($row['round_trip']);
                         $client_id = intval($row['client_id']);
-                        $client_name = htmlentities($row['client_name']);
+                        $client_name = nullable_htmlentities($row['client_name']);
                         if (empty($client_name)) {
                             $client_name_display = "-";
                         } else {
@@ -121,7 +121,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                         } else {
                             $round_trip_display = "";
                         }
-                        $user_name = htmlentities($row['user_name']);
+                        $user_name = nullable_htmlentities($row['user_name']);
                         if (empty($user_name)) {
                             $user_name_display = "-";
                         } else {
diff --git a/user_profile.php b/user_profile.php
index 6271598b..38083e93 100644
--- a/user_profile.php
+++ b/user_profile.php
@@ -23,15 +23,15 @@ $sql_recent_logs = mysqli_query($mysqli, "SELECT * FROM logs
 
                 <form action="post.php" method="post" enctype="multipart/form-data" autocomplete="off">
                     <input type="hidden" name="csrf_token" value="<?php echo $_SESSION['csrf_token'] ?>">
-                    <input type="hidden" name="existing_file_name" value="<?php echo htmlentities($session_avatar); ?>">
+                    <input type="hidden" name="existing_file_name" value="<?php echo nullable_htmlentities($session_avatar); ?>">
 
                     <center class="mb-3 px-5">
                         <?php if (empty($session_avatar)) { ?>
                             <i class="fas fa-user-circle fa-8x text-secondary"></i>
                         <?php } else { ?>
-                            <img alt="User avatar" src="<?php echo "uploads/users/$session_user_id/" . htmlentities($session_avatar); ?>" class="img-fluid">
+                            <img alt="User avatar" src="<?php echo "uploads/users/$session_user_id/" . nullable_htmlentities($session_avatar); ?>" class="img-fluid">
                         <?php } ?>
-                        <h4 class="text-secondary mt-2"><?php echo htmlentities($session_user_role_display); ?></h4>
+                        <h4 class="text-secondary mt-2"><?php echo nullable_htmlentities($session_user_role_display); ?></h4>
                     </center>
 
                     <hr>
@@ -42,7 +42,7 @@ $sql_recent_logs = mysqli_query($mysqli, "SELECT * FROM logs
                             <div class="input-group-prepend">
                                 <span class="input-group-text"><i class="fa fa-fw fa-user"></i></span>
                             </div>
-                            <input type="text" class="form-control" name="name" placeholder="Full Name" value="<?php echo stripslashes(htmlentities($session_name)); ?>" required>
+                            <input type="text" class="form-control" name="name" placeholder="Full Name" value="<?php echo stripslashes(nullable_htmlentities($session_name)); ?>" required>
                         </div>
                     </div>
 
@@ -52,7 +52,7 @@ $sql_recent_logs = mysqli_query($mysqli, "SELECT * FROM logs
                             <div class="input-group-prepend">
                                 <span class="input-group-text"><i class="fa fa-fw fa-envelope"></i></span>
                             </div>
-                            <input type="email" class="form-control" name="email" placeholder="Email Address" value="<?php echo htmlentities($session_email); ?>" required>
+                            <input type="email" class="form-control" name="email" placeholder="Email Address" value="<?php echo nullable_htmlentities($session_email); ?>" required>
                         </div>
                     </div>
 
@@ -157,11 +157,11 @@ $sql_recent_logs = mysqli_query($mysqli, "SELECT * FROM logs
 
                 while ($row = mysqli_fetch_array($sql_recent_logins)) {
                     $log_id = intval($row['log_id']);
-                    $log_ip = htmlentities($row['log_ip']);
-                    $log_user_agent = htmlentities($row['log_user_agent']);
+                    $log_ip = nullable_htmlentities($row['log_ip']);
+                    $log_user_agent = nullable_htmlentities($row['log_user_agent']);
                     $log_user_os = getOS($log_user_agent);
                     $log_user_browser = getWebBrowser($log_user_agent);
-                    $log_created_at = htmlentities($row['log_created_at']);
+                    $log_created_at = nullable_htmlentities($row['log_created_at']);
 
                     ?>
 
@@ -192,10 +192,10 @@ $sql_recent_logs = mysqli_query($mysqli, "SELECT * FROM logs
 
                 while ($row = mysqli_fetch_array($sql_recent_logs)) {
                     $log_id = intval($row['log_id']);
-                    $log_type = htmlentities($row['log_type']);
-                    $log_action = htmlentities($row['log_action']);
-                    $log_description = htmlentities($row['log_description']);
-                    $log_created_at = htmlentities($row['log_created_at']);
+                    $log_type = nullable_htmlentities($row['log_type']);
+                    $log_action = nullable_htmlentities($row['log_action']);
+                    $log_description = nullable_htmlentities($row['log_description']);
+                    $log_created_at = nullable_htmlentities($row['log_created_at']);
 
                     if ($log_action == 'Create') {
                         $log_icon = "plus text-success";
@@ -223,7 +223,7 @@ $sql_recent_logs = mysqli_query($mysqli, "SELECT * FROM logs
                 </tbody>
             </table>
             <div class="card-footer">
-                <a href="logs.php?q=<?php echo htmlentities($session_name); ?>">See More...</a>
+                <a href="logs.php?q=<?php echo nullable_htmlentities($session_name); ?>">See More...</a>
             </div>
         </div>
     </div>
diff --git a/users.php b/users.php
index 9850ff86..a06aeb4e 100644
--- a/users.php
+++ b/users.php
@@ -42,7 +42,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
             <div class="row">
                 <div class="col-md-4">
                     <div class="input-group">
-                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) {echo stripslashes(htmlentities($q));} ?>" placeholder="Search Users">
+                        <input type="search" class="form-control" name="q" value="<?php if (isset($q)) {echo stripslashes(nullable_htmlentities($q));} ?>" placeholder="Search Users">
                         <div class="input-group-append">
                             <button class="btn btn-primary"><i class="fa fa-search"></i></button>
                         </div>
@@ -73,8 +73,8 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                 while ($row = mysqli_fetch_array($sql)) {
                     $user_id = intval($row['user_id']);
-                    $user_name = htmlentities($row['user_name']);
-                    $user_email = htmlentities($row['user_email']);
+                    $user_name = nullable_htmlentities($row['user_name']);
+                    $user_email = nullable_htmlentities($row['user_email']);
                     $user_status = intval($row['user_status']);
                     if ($user_status == 2) {
                         $user_status_display = "<span class='text-info'>Invited</span>";
@@ -83,8 +83,8 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                     } else{
                         $user_status_display = "<span class='text-danger'>Disabled</span>";
                     }
-                    $user_avatar = htmlentities($row['user_avatar']);
-                    $user_token = htmlentities($row['user_token']);
+                    $user_avatar = nullable_htmlentities($row['user_avatar']);
+                    $user_token = nullable_htmlentities($row['user_token']);
                     $user_role = $row['user_role'];
                     if ($user_role == 3) {
                         $user_role_display = "Administrator";
@@ -93,7 +93,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                     } else {
                         $user_role_display = "Accountant";
                     }
-                    $user_initials = htmlentities(initials($user_name));
+                    $user_initials = nullable_htmlentities(initials($user_name));
 
                     $sql_last_login = mysqli_query(
                         $mysqli,
@@ -102,9 +102,9 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                         ORDER BY log_id DESC LIMIT 1"
                     );
                     $row = mysqli_fetch_array($sql_last_login);
-                    $log_created_at = htmlentities($row['log_created_at']);
-                    $log_ip = htmlentities($row['log_ip']);
-                    $log_user_agent = htmlentities($row['log_user_agent']);
+                    $log_created_at = nullable_htmlentities($row['log_created_at']);
+                    $log_ip = nullable_htmlentities($row['log_ip']);
+                    $log_user_agent = nullable_htmlentities($row['log_user_agent']);
                     $log_user_os = getOS($log_user_agent);
                     $log_user_browser = getWebBrowser($log_user_agent);
                     $last_login = "$log_user_os<br>$log_user_browser<br><i class='fa fa-fw fa-globe'></i> $log_ip";
diff --git a/vendor_add_from_template_modal.php b/vendor_add_from_template_modal.php
index 39523a27..3c4a1ef0 100644
--- a/vendor_add_from_template_modal.php
+++ b/vendor_add_from_template_modal.php
@@ -25,7 +25,7 @@
                                 $sql_vendor_templates = mysqli_query($mysqli, "SELECT * FROM vendors WHERE vendor_template = 1 AND vendor_archived_at IS NULL ORDER BY vendor_name ASC");
                                 while ($row = mysqli_fetch_array($sql_vendor_templates)) {
                                     $vendor_template_id = intval($row['vendor_id']);
-                                    $vendor_template_name = htmlentities($row['vendor_name']);
+                                    $vendor_template_name = nullable_htmlentities($row['vendor_name']);
 
                                     ?>
                                     <option value="<?php echo $vendor_template_id ?>"><?php echo $vendor_template_name; ?></option>
diff --git a/vendor_edit_modal.php b/vendor_edit_modal.php
index fc683040..9d67d694 100644
--- a/vendor_edit_modal.php
+++ b/vendor_edit_modal.php
@@ -82,7 +82,7 @@
                           $sql_vendor_templates = mysqli_query($mysqli, "SELECT * FROM vendors WHERE vendor_template = 1 AND vendor_archived_at IS NULL ORDER BY vendor_name ASC");
                           while ($row = mysqli_fetch_array($sql_vendor_templates)) {
                               $vendor_template_id_select = $row['vendor_id'];
-                              $vendor_template_name_select = htmlentities($row['vendor_name']); ?>
+                              $vendor_template_name_select = nullable_htmlentities($row['vendor_name']); ?>
                               <option <?php if ($vendor_template_id == $vendor_template_id_select) { echo "selected"; } ?> value="<?php echo $vendor_template_id_select; ?>"><?php echo $vendor_template_name_select; ?></option>
 
                           <?php } ?>
diff --git a/vendors.php b/vendors.php
index c62db102..dc51e702 100644
--- a/vendors.php
+++ b/vendors.php
@@ -37,7 +37,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                 <div class="row">
                     <div class="col-sm-4">
                         <div class="input-group">
-                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) {echo stripslashes(htmlentities($q));} ?>" placeholder="Search Vendors">
+                            <input type="search" class="form-control" name="q" value="<?php if (isset($q)) {echo stripslashes(nullable_htmlentities($q));} ?>" placeholder="Search Vendors">
                             <div class="input-group-append">
                                 <button class="btn btn-secondary" type="button" data-toggle="collapse" data-target="#advancedFilter"><i class="fas fa-filter"></i></button>
                                 <button class="btn btn-primary"><i class="fa fa-search"></i></button>
@@ -66,13 +66,13 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
                         <div class="col-md-2">
                             <div class="form-group">
                                 <label>Date From</label>
-                                <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo htmlentities($dtf); ?>">
+                                <input type="date" class="form-control" name="dtf" max="2999-12-31" value="<?php echo nullable_htmlentities($dtf); ?>">
                             </div>
                         </div>
                         <div class="col-md-2">
                             <div class="form-group">
                                 <label>Date To</label>
-                                <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo htmlentities($dtt); ?>">
+                                <input type="date" class="form-control" name="dtt" max="2999-12-31" value="<?php echo nullable_htmlentities($dtt); ?>">
                             </div>
                         </div>
                     </div>
@@ -94,28 +94,28 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
 
                     while ($row = mysqli_fetch_array($sql)) {
                         $vendor_id = intval($row['vendor_id']);
-                        $vendor_name = htmlentities($row['vendor_name']);
-                        $vendor_description = htmlentities($row['vendor_description']);
+                        $vendor_name = nullable_htmlentities($row['vendor_name']);
+                        $vendor_description = nullable_htmlentities($row['vendor_description']);
                         if (empty($vendor_description)) {
                             $vendor_description_display = "-";
                         } else {
                             $vendor_description_display = $vendor_description;
                         }
-                        $vendor_account_number = htmlentities($row['vendor_account_number']);
-                        $vendor_contact_name = htmlentities($row['vendor_contact_name']);
+                        $vendor_account_number = nullable_htmlentities($row['vendor_account_number']);
+                        $vendor_contact_name = nullable_htmlentities($row['vendor_contact_name']);
                         if (empty($vendor_contact_name)) {
                             $vendor_contact_name_display = "-";
                         } else {
                             $vendor_contact_name_display = $vendor_contact_name;
                         }
                         $vendor_phone = formatPhoneNumber($row['vendor_phone']);
-                        $vendor_extension = htmlentities($row['vendor_extension']);
-                        $vendor_email = htmlentities($row['vendor_email']);
-                        $vendor_website = htmlentities($row['vendor_website']);
-                        $vendor_hours = htmlentities($row['vendor_hours']);
-                        $vendor_sla = htmlentities($row['vendor_sla']);
-                        $vendor_code = htmlentities($row['vendor_code']);
-                        $vendor_notes = htmlentities($row['vendor_notes']);
+                        $vendor_extension = nullable_htmlentities($row['vendor_extension']);
+                        $vendor_email = nullable_htmlentities($row['vendor_email']);
+                        $vendor_website = nullable_htmlentities($row['vendor_website']);
+                        $vendor_hours = nullable_htmlentities($row['vendor_hours']);
+                        $vendor_sla = nullable_htmlentities($row['vendor_sla']);
+                        $vendor_code = nullable_htmlentities($row['vendor_code']);
+                        $vendor_notes = nullable_htmlentities($row['vendor_notes']);
                         $vendor_template_id = intval($row['vendor_template_id']);
 
                         ?>