writing secure PHP code
This is a great post about writing secure PHP code and part 2. The articles pretty much cover all the points we need to look at to write secure PHP code.
Additionally this post talks about how hackers can use Google code search and a simple sitemap to gain access to your system.