martinibuster - 7:21 am on May 24, 2012 (gmt 0)

1. What is a security team?

2. What will a so-called security team do except review the code?

3. Shouldn't a PHP expert be able to identify vulnerable code?

You maay try to you review your code as I suggested to find what may be out of date.

If by looking at your code, the includes, and the style sheets you are able to determine what software the developer used...

Often you can find what software is being used simply by Googling/Binging snippets.

[edited by: martinibuster at 8:17 am (utc) on May 24, 2012]