diff --git a/resources/views/admin/plans/index.blade.php b/resources/views/admin/plans/index.blade.php
index eeb1b0d..425e35d 100644
--- a/resources/views/admin/plans/index.blade.php
+++ b/resources/views/admin/plans/index.blade.php
@@ -32,11 +32,15 @@
 
     @php
         $incomingBack = (string) request()->query('back', '');
-        $safeBack = str_starts_with($incomingBack, '/') ? $incomingBack : '';
+        // 为避免 & 被 Blade escape 成 &amp; 导致回退上下文丢失，这里需要原样输出 href。
+        // 安全护栏：必须为站内相对路径，并拒绝引号/尖括号，降低 XSS 风险。
+        $safeBack = (str_starts_with($incomingBack, '/') && !preg_match('/["\'<>]/', $incomingBack))
+            ? $incomingBack
+            : '';
     @endphp
     @if($safeBack)
         <div class="mt-10">
-            <a href="{{ $safeBack }}" class="muted">← 返回上一页（保留上下文）</a>
+            <a href="{!! $safeBack !!}" class="muted">← 返回上一页（保留上下文）</a>
         </div>
     @endif
 </div>
diff --git a/resources/views/admin/platform_orders/form.blade.php b/resources/views/admin/platform_orders/form.blade.php
index d6b50f6..636ccbb 100644
--- a/resources/views/admin/platform_orders/form.blade.php
+++ b/resources/views/admin/platform_orders/form.blade.php
@@ -88,11 +88,15 @@
     <div class="form-actions">
         @php
             $incomingBack = (string) ($defaults['back'] ?? '');
-            $safeBack = str_starts_with($incomingBack, '/') ? $incomingBack : '';
+            // 为避免 & 被 Blade escape 成 &amp; 导致回退上下文丢失，这里需要原样输出 href。
+            // 安全护栏：必须为站内相对路径，并拒绝引号/尖括号，降低 XSS 风险。
+            $safeBack = (str_starts_with($incomingBack, '/') && !preg_match('/["\'<>]/', $incomingBack))
+                ? $incomingBack
+                : '';
         @endphp
 
         @if($safeBack)
-            <a href="{{ $safeBack }}" class="btn-secondary">返回（保留上下文）</a>
+            <a href="{!! $safeBack !!}" class="btn-secondary">返回（保留上下文）</a>
         @else
             <a href="/admin/platform-orders" class="btn-secondary">返回</a>
         @endif
diff --git a/resources/views/admin/platform_orders/index.blade.php b/resources/views/admin/platform_orders/index.blade.php
index 2ba427f..99d58d0 100644
--- a/resources/views/admin/platform_orders/index.blade.php
+++ b/resources/views/admin/platform_orders/index.blade.php
@@ -23,11 +23,15 @@
 
     @php
         $back = (string) request()->query('back', '');
-        $safeBack = str_starts_with($back, '/') ? $back : '';
+        // 为避免 & 被 Blade escape 成 &amp; 导致回退上下文丢失，这里需要原样输出 href。
+        // 安全护栏：必须为站内相对路径，并拒绝引号/尖括号，降低 XSS 风险。
+        $safeBack = (str_starts_with($back, '/') && !preg_match('/["\'<>]/', $back))
+            ? $back
+            : '';
     @endphp
     @if($safeBack)
         <div class="mt-10">
-            <a href="{{ $safeBack }}" class="muted">← 返回上一页（保留上下文）</a>
+            <a href="{!! $safeBack !!}" class="muted">← 返回上一页（保留上下文）</a>
         </div>
     @endif
 
diff --git a/resources/views/admin/site_subscriptions/index.blade.php b/resources/views/admin/site_subscriptions/index.blade.php
index 10db8d7..1da57f5 100644
--- a/resources/views/admin/site_subscriptions/index.blade.php
+++ b/resources/views/admin/site_subscriptions/index.blade.php
@@ -40,11 +40,15 @@
 
     @php
         $incomingBack = (string) request()->query('back', '');
-        $safeBack = str_starts_with($incomingBack, '/') ? $incomingBack : '';
+        // 为避免 & 被 Blade escape 成 &amp; 导致回退上下文丢失，这里需要原样输出 href。
+        // 安全护栏：必须为站内相对路径，并拒绝引号/尖括号，降低 XSS 风险。
+        $safeBack = (str_starts_with($incomingBack, '/') && !preg_match('/["\'<>]/', $incomingBack))
+            ? $incomingBack
+            : '';
     @endphp
     @if($safeBack)
         <div class="mt-10">
-            <a href="{{ $safeBack }}" class="muted">← 返回上一页（保留上下文）</a>
+            <a href="{!! $safeBack !!}" class="muted">← 返回上一页（保留上下文）</a>
         </div>
     @endif
 </div>
