This whitepaper will discuss basic PHP secure coding practices that should be followed when working in a team environment. In this paper you will learn how to write code that is protected from the most common types of attacks including file uploads, SQL injection, XSS, CSRF and other injection attacks. Best practices for session management, error handling, proper password protection and protection against remote code execution are also covered in detail.