afaik there is much php software that is considered "bad","insecure" etc... for example phpbb2 .... or ecommerce sowtware. just try to google for 'phpbb exploit' and you'll see. even the superior php soft like mediawiki recently had some troubles.
on the other hand there is perl. perl runs www.livejournal.com, perl powers www.combats.ru. perl is used by countless billing systems, network administration, update servers, SOAP etc..
I know someone would object this is not php this is programmer's fault. but there is no strictness in php, nor there is -T flag (to make interpreter scream about tainted data). think of it..