You need to escape your content by changing characters which would otherwise be interpretted as part of the HTML into their corresponding entities. If you are using the CGI module, it provides an escapeHTML() function. In your case, you might be able to get away with a couple quick regular expressions.

my %entity = ( 
               '<' => '&lt;', 
               '>' => '&gt;', 
               '&' => '&amp;',
               '"' => '&quot;',
             );
$text =~ s/([<>&"])/$entity{$1}/g;
[download]

-sauoq
"My two cents aren't worth a dime.";