im so supirsed this thread didnt get locked?

Leave it as: DDL CMS, DID have the allow_url_include exploit, however now, thanks to a few webmasters bringing it up, NOT badmouthing, it has been updated, and now is not vunerable to this exploit.
@Little Dragon, i think you are taking everything the wrong way, and instead of taking this as constructive criticism, for future dev, you have taken it as flame.
As for JmZ getting frustrated at you, i think he is just retaliating to your insults.