Yes, the issue is about the inclusion of SessionID's in the URL. However, some people don't know any better: they casually give out URL's with Session and SessionID information in it, not knowing that other people can use the URL to log in as them. Before you start ranting and raving about the "Security risk", at least wait to hear what the admins have to say about the issue. And if you are going to complain about Renderosity's security risk, be sure to complain at DAZ and PoserPros and all of the other sites that use SessionID's. :) --John

VanishingPoint... Advanced 3D Modeling Solutions