search
Active Boosts

#37822 [W&A-Insight] insight incorrect amounts displayed to foreign users

hashtag
#37822 [W&A-Insight] Incorrect Amounts Displayed To Foreign Users

Submitted on Dec 16th 2024 at 18:39:10 UTC by @Blockian for IOP | SwayLend Frontendarrow-up-right

  • Report ID: #37822

  • Report Type: Websites and Applications

  • Report severity: Insight

  • Target: https://github.com/Swaylend/swaylend-monorepo/tree/develop/apps/frontend

  • Impacts:

    • Temporarily disabling user to access target site, such as:

  • Locking up the victim from login

  • Cookie bombing, etc.

    • Displaying Incorrect Information To Users

hashtag
Description

hashtag
Sway Bug Report

hashtag
Incorrect Amounts Displayed When Page Is Translated

hashtag
Overview

An issue has been found in the Swaylend frontend where currency symbols are incorrectly displayed when the page is translated into different languages.

hashtag
Detailed Findings

In all areas of the frontend where amounts are displayed, the $ symbol is hardcoded. However, the wrapping HTML element does not include the notranslate class. This oversight causes Google Translate to replace the $ symbol with a currency sign that matches the selected language, leading to confusion.

hashtag
Example

For instance, if a European user visits the site (a highly likely scenario) and uses Google Translate to view the site in Dutch, all instances of the $ symbol will be converted into symbols. The underlying numeric values remain unchanged, which misrepresents the actual currency.

hashtag
Impact

This discrepancy creates a misleading user experience by displaying incorrect amounts. Users may make incorrect assumptions about the values presented, potentially leading to erroneous transactions and a loss of trust in the system.

hashtag
Proposed Solution

To resolve this issue, include the notranslate class (as recommended in the Google Translate documentationarrow-up-right) for all elements displaying currency amounts. This will prevent Google Translate from altering the currency symbols.

hashtag
Proof of Concept

hashtag
Proof of Concept

To replicate the issue, follow these steps:

  1. Navigate to https://app.swaylend.com/arrow-up-right.

  2. Enable Google Translate and select a language (e.g., Dutch).

  3. Observe that all $ symbols are replaced with symbols while the numeric values remain unchanged.

hashtag
Summary

Adding the notranslate class is a simple and effective fix to ensure currency symbols remain accurate across all translated versions of the site, preserving user trust and preventing potential errors.

PreviousSwayLend frontendNext#37196 [W&A-Insight] DOS due to Misleading 'CircularProgressBar' Display Due to Rounding of 'supplyU

Last updated

Was this helpful?