| Project: | ProjectPier |
| Version: | 0.8.0.3 |
| Component: | Code |
| Category: | bug report |
| Priority: | normal |
| Assigned: | Unassigned |
| Status: | new |
Some translations have HTML in there. For example a translation for es_ar:
'log add projectmessages' => '\'%s\' agregado',
shows in the interface with all the HTML because it is escaped like:
<strong>agregado</strong>
Looking at the code I found out that for this specific case that there's a "clean" function being applied to the final string at application/views/application/render_application_logs.php in a lot of places. Removing that "clear" solves the problem but may cause problems if the string replaced at "%s" contains any <, > or & symbols. So the real solution would be to "clean" that %s before is injected into the translation.
There are many other places where this is happening like mostly everywhere where a HTML entity is used like " " or "á".
Is there a simple way of fixing this or would I have to go through all the files where "clean" is used and track down where the replacement for "%s" was done and apply clean there and leave the translations without "clean"?