I have forgotten what caused the vulnerability where you upload a file such as somefile.php.jpg and it can be executed as a php script. I know this isn't a php vulnerability as much as an addon. I think in the past it was suexec that caused this but not sure. Anyone have a clue? Regards, /str0ke