an interesting article on automated vulnerability scanners and the limitations of these tools in finding real life web application vulnerabilities .

The following column was published on SecurityFocus today: PHP apps: Security’s Low-Hanging Fruit by Kelly Martin published 2007-01-08 PHP has become the most popular application language on the web, but common security mistakes by developers are giving PHP a bad name. Here’s how PHP coding errors have become the new low-hanging fruit for attackers, contributing [...]