Hello Ras, \\

I've sent you an email. But since people can find this post, I'll reply it here also.

The attack I've described was a XSS (cross site scripting) attack that you would deploy on your page and affect others that would look your profile. Having your profile changed due to seeing someone's profile, it's a bit more extreme because it would have to do the following:

1. identify your user well that might not be dificult\\
1. be able to submit some code of their own as you, this can be a problem. Since the submissions don't go stored in the URL but in the HTTP Header.

Although I'm not saying it's not possible, I'm gonna look into it a bit. Or could be another totally different problem. 

But somehow if it was a script injection on your page here are the tips to see if you can get your profile back:

1. go to your web browsers preferences and disable javascript\\
1. enter your hi5 profile
1. select My profile and then edit
1. Check the fields who support HTML and look for strange things you haven't written there. 

Also if you find anything please copy/paste and send them back via email or post it here. I would be interested in seeing that.

Best regards,\\
Paulo Abrantes