PHP Security
More than a quarter of all software vulnerabilities identified among the Common Vulnerabilities and Exposures (CVE) listed and recorded in the National Vulnerability Database is related to PHP. This makes PHP susceptible to hackers who develop scantily built applications written in PHP. Most of these vulnerabilities can be slightly exploited without being logged on the computer hosting the exposed application. Because of bad programming habits such as failing to check data before entering into a database, and certain features, such exploitation is possible.. This kind of attacks is not limited to PHP and can mostly be avoided by following the appropriate coding procedures and principles.