From: Felix Dörre <felix@dogcraft.de>
Date: Sat, 12 Jul 2014 13:51:18 +0000 (+0200)
Subject: HTMLEncode all language text before outputting it.
X-Git-Url: https://code.wpia.club/?p=gigi.git;a=commitdiff_plain;h=cf9a1a8691f33173b2668ba415c133cf2a85085e

HTMLEncode all language text before outputting it.
---

diff --git a/src/org/cacert/gigi/Language.java b/src/org/cacert/gigi/Language.java
index fc94ce1b..75593ccf 100644
--- a/src/org/cacert/gigi/Language.java
+++ b/src/org/cacert/gigi/Language.java
@@ -5,10 +5,12 @@ import java.io.FileInputStream;
 import java.io.IOException;
 import java.util.HashMap;
 import java.util.Locale;
+
 import javax.xml.parsers.DocumentBuilder;
 import javax.xml.parsers.DocumentBuilderFactory;
 import javax.xml.parsers.ParserConfigurationException;
 
+import org.cacert.gigi.util.HTMLEncoder;
 import org.w3c.dom.Document;
 import org.w3c.dom.Element;
 import org.w3c.dom.NodeList;
@@ -38,7 +40,7 @@ public class Language {
 			Element e = (Element) nl.item(i);
 			Element id = (Element) e.getElementsByTagName("id").item(0);
 			Element msg = (Element) e.getElementsByTagName("msg").item(0);
-			translations.put(id.getTextContent(), msg.getTextContent());
+			translations.put(id.getTextContent(), HTMLEncoder.encodeHTML(msg.getTextContent()));
 		}
 		System.out.println(translations.size() + " strings loaded.");
 	}