If anyone has links to serious security vulnerabilities with these versions of PHP or MySQL then I might be able to use this to get the client to upgrade. I don't think they will do anything without any tangible proof that using them is dangerous/risky. Pete