I've noticed a number of entries in my logs that appear to show successful remote file include exploits to reveal the user running Apache. Amember 3.0.8PRO (ie. latest version) running on RHEL, with register_globals off. Other attempts are visible in the logs. Many 403s, but some 200s. Search on 'amember' and 'mysql' to check for attempts in your own logs. I've logged this as an urgent request with tech support, but no response as yet. Has anyone else experienced this?