Here are the slides of my ZendCon talk about Lesser Known Security Problems in PHP Applications.

(PDF) Lesser Known Security Problems in PHP Applications