An anonymous reader writes "Chinese social networking site Renren.com has long been known as being a cheap clone of the famous Facebook site.Recently, a small hobbist group has found a leak on one of the onsite apps that allow any HTML injection. Scripts injected inside the App could have easy access to users' private cookies and data.
Upon discovery, the exploit has been reported to the App's manager but 48 hours have passed and still no effort to fix the issue from either Renren or the App's manager has been made. It is estimated that at least 1,264,000 users are affected by this exploit.
Just goes to show you what China quality software is and their initiative to fix their problems."
Link to Original Source