Hi again, same question about this one. Is it also in PHP5? CVE-2005-3391: Multiple vulnerabilities in PHP before 4.4.1 allow remote attackers to bypass safe_mode and open_basedir restrictions via unknown attack vectors in (1) ext/curl and (2) ext/gd. Cheers, Stefan