diff --git a/apps/routerconsole/java/src/net/i2p/router/web/EventLogHelper.java b/apps/routerconsole/java/src/net/i2p/router/web/EventLogHelper.java
index 1b9e86fa2aee33bbbb9c865eeebcee80d85f8c48..d6882f0a6d511d9139066c7a1374d5ea2f01d071 100644
--- a/apps/routerconsole/java/src/net/i2p/router/web/EventLogHelper.java
+++ b/apps/routerconsole/java/src/net/i2p/router/web/EventLogHelper.java
@@ -160,6 +160,7 @@ public class EventLogHelper extends FormHandler {
         String xev = _xevents.get(_event);
         if (xev == null)
             xev = _event;
+        xev = DataHelper.escapeHTML(xev);
         if (events.isEmpty()) {
             if (isAll) {
                 if (_age == 0)
diff --git a/apps/routerconsole/jsp/summary.jsi b/apps/routerconsole/jsp/summary.jsi
index d38637d8366d1bab469c67356e6e485e635fa4e8..d9f62f247d1be21eed240185e17a1818246d7c8c 100644
--- a/apps/routerconsole/jsp/summary.jsi
+++ b/apps/routerconsole/jsp/summary.jsi
@@ -17,9 +17,14 @@
         if (d == null || "".equals(d))
             d = intl.getRefresh();
         else {
-            d = net.i2p.data.DataHelper.stripHTML(d);  // XSS
+            long delay;
+            try {
+                delay = Long.parseLong(d);
+            } catch (NumberFormatException nfe) {
+                delay = 60;
+            }
             // pass the new delay parameter to the iframe
-            newDelay = "?refresh=" + d;
+            newDelay = "?refresh=" + delay;
             // update disable boolean
             intl.setDisableRefresh(d);
         }
diff --git a/apps/routerconsole/jsp/summaryframe.jsp b/apps/routerconsole/jsp/summaryframe.jsp
index 8189635fc1aa9a251ce85b4df035a2eee09aefef..cb27feab22c2ded2cca777206453d911b1db6d1f 100644
--- a/apps/routerconsole/jsp/summaryframe.jsp
+++ b/apps/routerconsole/jsp/summaryframe.jsp
@@ -23,7 +23,7 @@
     if (!shutdownSoon) {
         if (d == null || "".equals(d)) {
             // set below
-        } else {
+        } else if (intl.getNonce().equals(conNonceParam)) {
             d = net.i2p.data.DataHelper.stripHTML(d);  // XSS
             intl.setRefresh(d);
             intl.setDisableRefresh(d);
diff --git a/router/java/src/net/i2p/router/RouterVersion.java b/router/java/src/net/i2p/router/RouterVersion.java
index 33006bcb1fcf7b29de80bcff65c8bd526b224fb9..285b64c36d6c8c56d27bc442c464c5057a7ccb8e 100644
--- a/router/java/src/net/i2p/router/RouterVersion.java
+++ b/router/java/src/net/i2p/router/RouterVersion.java
@@ -18,7 +18,7 @@ public class RouterVersion {
     /** deprecated */
     public final static String ID = "Monotone";
     public final static String VERSION = CoreVersion.VERSION;
-    public final static long BUILD = 27;
+    public final static long BUILD = 28;
 
     /** for example "-test" */
     public final static String EXTRA = "-rc";