diff --git a/database/reportChatroomMessage.php b/database/reportChatroomMessage.php
index c7fb442..21dbb35 100644
--- a/database/reportChatroomMessage.php
+++ b/database/reportChatroomMessage.php
@@ -9,6 +9,10 @@ $reason = $post['reason'] ?? '';
 $token = $post['token'] ?? '';
 $username = $post['username'] ?? '';
 
+if (!preg_match('/^[ a-zA-Z0-9!@#\$%\^&\*\(\)_\+\-=\[\]\{\};\':",\.<>\/\?\\\\|`~]+$/', $reason)) {
+    exitWithMessage(json_encode(["success" => false]));
+}
+
 $conn = newConnection();
 
 $stmt = $conn->prepare("SELECT * FROM users WHERE token = ? AND username = ?");