This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit

PHP Project Frontispiece

Jump to: navigation, search


This guide is designed to be used by developers so they can write secure PHP programs. Unlike many, OWASP believes that given enough effort, systems written in PHP can be made secure. This guide does not offer any methods to attack PHP software, but provides safer alternatives to avoid common problems.