PHP is very popular but many PHP applications and environments have security vulnerabilities, as shown by the National Vulnerability Database statistics and the PHPSecInfo security auditing tool; PHPSecInfo tests PHP environments for 17 common vulnerabilities and provides easy to understand color-coded results to help system administrators, developers, and deployers address these issues and improve security.