php Security

It is the responsibility of all developers on the UH Web Servers to ensure the scripts for which they are responsible are secure. All developers should review the below links and familiarize themselves with basic security precautions. Failure to do so could cause your script to be removed from the Central Web Server, revocation of your Central Web Server account, or disciplinary or legal action.

Security Incidents

All security incidents must be reported to Information Technology Security immediately.


  • Compromise of Sensitive Information
  • Loss of Data
  • Denial of Service
  • Defacement of Web site
  • Identity Theft

For a full list of incidents that must be reported, contact Information Technology Security.

Security Resources

Web security overview + PHP
PHP and General web application security

PHP Specific security concerns
Texas Administrative Code

Contact Us