An exploit has been released on ZendPhoto, as of now, ZendPhoto should be working on the new version... The exploit is SQL Injection, more info at the link below... It gets the User Login name and Password hash(md5).. Here's a general Inquiry... http://devsn.org/forums/viewtopic.php?f=11&t=6&start=0&st=0&sk=t&sd=a Please be safe.. Dev Security Network..