All CGI/PHP scripts are run under your own unique UID. This means that they can only access files and resources accessible by this UID. Your own hosting directory is by default set to have permissions that do not allow other users any access to it.
Posted in: Questions about PHP scripting