Custom php,mysql application security development


I have developed object oriented custom php/mysql portal application.

What are things to be done to implement security in application.

Please advise.


You can take a look at sanitizing all user input to protect against sql injection. Protecting against XSS and CSRF attacks are important too…check out this resource: