How safe is this? Would someone be able to hack the system using a method similar to an SQL injection in the game? For that matter, would this be able to hijack an AJAX call and send the player to a phishing/malware site? Just wondering, I'm not yet up on C2 security.