That article is over a decade old. A lot of these issues aren’t relevant any more or have been fixed. Some weren’t even PHP issues, for example mysql_real_escape_string is a MySQL API (dev.mysql.com/…/mysql-real-escape-string.html).
PHP isn’t the best language, but it’s not as bad as some people claim it to be, especially if you use a good framework like Laravel.