This is a simple set of things to grep for that will help identify potential vulnerabilities in PHP code.
You can download it from the following link: https://packetstormsecurity.com/files/download/142967/PHP-vulnerability-audit-cheatsheet-master.zip
Source: https://packetstormsecurity.com/files/142967/PHP-Vulnerability-Audit-Cheatsheet.html