Recently posted about the soft hyphen in \"cool hacks\"<br><br>thought i'd share one site i know that's vulnerable (because i just tested it)<br>i went through some of the sites on the link page<br><br>I just registered<br>ElecÂtrica<br>with password testtest<br><br>but beware there is an xAD character in there<br>the username was created with echo -e \"ElecxADtrica\"<br>you could now post messages as \"Electrica\"<br>or you could register CaexADsum .. and be all devious and/or bloody annoying<br><br>Aren't vulnerabilities in fellow challenge sites all the \"cool\"? Do I get extra karma points for <br>posting it first on Bright-Shadows?<br><br>ps: it's nifty, you'll see that you can copy paste the username from above,<br>and use it with the password given.<br><br>but it won't work if you just type the username (without the softhyphen)