diff --git a/www/include/configuration/configObject/contactgroup/formContactGroup.php b/www/include/configuration/configObject/contactgroup/formContactGroup.php
index 4112ceb27b7..fa2bfb9215a 100644
--- a/www/include/configuration/configObject/contactgroup/formContactGroup.php
+++ b/www/include/configuration/configObject/contactgroup/formContactGroup.php
@@ -64,12 +64,14 @@
     /*
      * Get host Group information
      */
-    $DBRESULT = $pearDB->query("SELECT * FROM `contactgroup` WHERE `cg_id` = '" . $cg_id . "' LIMIT 1");
+    $statement = $pearDB->prepare("SELECT * FROM `contactgroup` WHERE `cg_id` = :cg_id LIMIT 1");
+    $statement->bindValue(':cg_id', (int) $cg_id, \PDO::PARAM_INT);
+    $statement->execute();
 
     /*
      * Set base value
      */
-    $cg = array_map("myDecode", $DBRESULT->fetchRow());
+    $cg = array_map("myDecode", $statement->fetch(\PDO::FETCH_ASSOC));
 }
 
 $attrsText = array("size" => "30");