CVE-2015-1054
CVE-2015-1054 affects CreA8social 2.0 in the Games feature. The vulnerability is an HTML injection/XSS via the Add Game content field, exploitable by remote authenticated users to inject arbitrary script/HTML (potential cookie/session abuse). CNVD/CNVD-derived descriptions emphasize attacker-supp...