PHP is the programming language that WordPress runs on. PHP processes every page load, every form submission, every admin dashboard interaction on your server. If WordPress is the car, PHP is the engine.
And just like an engine, your WordPress PHP version matters. Running an outdated PHP version means slower performance, missing security patches, and eventually, plugins that stop working because they no longer support your version. The costs of deferring this upgrade compound just like any other deferred WordPress maintenance.
Nearly 47% of WordPress sites are currently running a PHP version that has reached end-of-life, meaning it receives zero security updates from the PHP project. That is a lot of websites operating with known, unpatched vulnerabilities.
But PHP upgrades are genuinely higher-stakes than plugin or theme updates. An incompatible plugin update might break a form or cause a visual glitch. An incompatible PHP upgrade can take your entire site offline.
The caution people feel about PHP upgrades is warranted. The good news is that you can update PHP in WordPress without breaking your site, as long as you follow the right process.
What PHP Version Should You Be Running in 2026?
Here is the current PHP version picture as of March 2026:
| PHP Version | Status | Support Ends |
|---|---|---|
| PHP 8.5 | Active support | Dec 2029 |
| PHP 8.4 | Active support | Dec 2028 |
| PHP 8.3 | Security fixes only | Dec 2027 |
| PHP 8.2 | Security fixes only | Dec 2026 |
| PHP 8.1 | End-of-life | Expired Dec 2025 |
| PHP 8.0 | End-of-life | Expired Nov 2023 |
| PHP 7.4 | End-of-life | Expired Nov 2022 |
Each PHP version gets two years of active support (bug fixes and security patches) followed by two years of security-only support. After that, it is completely end-of-life, meaning no patches of any kind.
Our recommendation for the best PHP version for WordPress in 2026: PHP 8.4 is the sweet spot for most sites. It is actively supported, mature enough that the major plugin developers have caught up, and it delivers measurable performance improvements over older versions.
PHP 8.3 is also a solid choice if you want the widest possible plugin compatibility, since it has been fully supported by WordPress core since version 6.8.
If you are still running PHP 7.4, 8.0, or 8.1, you should be planning an upgrade now. These versions are fully end-of-life and no longer receive security patches. WordPress still technically runs on them, but "technically runs" is not the same as "safe to operate." Like all WordPress updates, PHP upgrades belong in a consistent maintenance schedule rather than being treated as a one-off task.
Does PHP Version Actually Affect Performance?
Yes, and the data backs it up. Kinsta publishes PHP benchmarks annually, and their 2026 results for WordPress 6.8 tell a clear story:
| PHP Version | Requests/Second | Improvement Over 7.4 |
|---|---|---|
| PHP 7.4 | 139 req/s | Baseline |
| PHP 8.2 | 146 req/s | +5.1% |
| PHP 8.3 | 143 req/s | +2.7% |
| PHP 8.4 | 148 req/s | +6.6% |
| PHP 8.5 | 148 req/s | +6.6% |
For standard WordPress sites, the difference between PHP 8.3, 8.4, and 8.5 is marginal. The meaningful jump is moving off PHP 7.x entirely. If your site is still on PHP 7.4, upgrading to any current 8.x version gives you a noticeable speed improvement.
For WooCommerce stores, the numbers are more dramatic. WooCommerce running on PHP 8.4 handles about 21% more requests per second than on PHP 7.4. PHP 8.5 pushes that to over 60% improvement for WooCommerce specifically, thanks to smaller response payloads.
The takeaway: PHP upgrades are a real, measurable performance improvement at the hosting infrastructure level. But chasing the absolute latest version is less important than making sure you are not stuck on something that is already at the end of life.
WordPress PHP Version Requirements vs. Reality
WordPress officially requires PHP 7.2.24 as a minimum. The recommended WordPress PHP version as of 2026 is PHP 8.3 or greater. You will see a dashboard warning if you are running an unsupported version.
WordPress also labels PHP 8.4 and 8.5 as "beta support," which sounds more concerning than it is. In practice, WordPress core runs without issues on PHP 8.4. The "beta" label is conservative labeling from the WordPress project, not a warning against production use.
The real compatibility concern with newer PHP versions is not WordPress core. It is plugins and themes.
This is where the complexity lives. WordPress itself is well-maintained and keeps up with PHP releases. But the tens of thousands of plugins out there update on their own timelines. Some are fast. Some are slow. Some are abandoned entirely.
When you upgrade PHP, you are not just upgrading WordPress. You are upgrading the runtime environment for every piece of code on your site.
What Actually Breaks During a PHP Upgrade
Understanding the common breakage patterns helps you know what to look for. Here are the ones we see most often:
The PHP 7.x-to-8.0 jump was the most disruptive transition in recent PHP history. String-to-number comparisons changed behavior, several functions were removed entirely, and stricter type handling turned many warnings into fatal errors. Sites that skipped from 7.4 directly to 8.2 or 8.3 sometimes hit multiple breaking changes at once.
PHP 8.2 deprecated dynamic properties, which affected many older WordPress plugins that created object properties on the fly. This generated deprecation warnings in logs, even if the site still functioned.
PHP 8.4 introduced the most common current issue: a deprecation warning for implicitly nullable parameters. This affects popular plugins including Yoast SEO, WooCommerce PayPal Payments, Easy WP SMTP, MailPoet, and Loco Translate, among others.
The key distinction here is that deprecation notices are warnings, not errors. Your site will still work, but your error logs will fill up, and the behavior will eventually become a fatal error in a future PHP version.
In our experience, the plugins that cause the most trouble during PHP upgrades tend to be:
- Older commercial plugins with legacy codebases
- Niche add-ons with small development teams
- Anything not updated in the past year
Well-maintained plugins from major developers typically address PHP compatibility quickly.
Here are the patterns we see most frequently across our fleet:
| Plugin/Pattern | Issue | Status |
|---|---|---|
| Older commercial plugins | Implicit nullable parameters | Varies by plugin |
| Niche add-ons (small dev teams) | Deprecated function usage | Often slow to update |
| Plugins not updated in 12+ months | Multiple PHP deprecations | May need replacement |
| Custom code/child themes | Outdated PHP syntax | Requires developer review |
Why Staging Is Non-Negotiable for PHP Upgrades
Automated compatibility scanners exist, and they are useful as a first step. The PHP Compatibility Checker plugin from WP Engine can scan your installed plugins and themes for known incompatibilities. But static analysis catches roughly 60-70% of issues. The rest only surface during actual runtime testing: database queries, API calls, and conditional code paths that the scanner cannot exercise.
This is why testing on a staging environment before touching production is non-negotiable for PHP upgrades. Create a copy of your site, change the PHP version on that copy, and test everything:
- Every page
- Every form
- Every checkout flow
- Every admin function
Check the error logs for new warnings or errors. Fix or replace anything incompatible. Only then do you touch production.
For organizations that do not have a staging environment set up, a PHP upgrade is one of the strongest reasons to build one. The cost of setting up staging is trivial compared to diagnosing a broken production site under pressure.
How FatLab Handles PHP Upgrades Across 200 Sites
Our approach to PHP upgrades is fundamentally different from that of most hosting companies, and it is worth understanding why.
"We never upgrade the server sites that are on. We set up a new server with the latest version of PHP, then slowly migrate websites one by one. We clone a production site to the new server, run our tests, and then repoint the firewall to it. Everything has been tested, everything is working, and there is zero downtime during the switchover."
If anything goes wrong, the original server is still running with the original PHP version. We just point traffic back.
This is the difference between a hands-on support company and a standard hosting provider. Budget hosts perform mass server upgrades that affect every site at once, whether or not those sites have been tested. Our approach treats each site individually because each has its own plugin stack, theme, and compatibility profile.
Contrast this with what happens at budget hosting providers. They send a notice that they are upgrading PHP on your server on a specific date. When that date arrives, every site on that server receives the new PHP version simultaneously, whether or not those sites have been tested.
"I've received many calls over the years after a PHP upgrade went through and the site became unresponsive, unusable, or full of errors. When you call your hosting company, they say the upgrade has already been done, they can't roll it back, and now you're on your own."
That is a horrible situation to be in, and we have seen it happen far too many times.
How to Update PHP in WordPress Safely
Whether you are handling this yourself or working with a developer, here is the process for a WordPress PHP upgrade that should happen:
Before the upgrade:
- Check your current WordPress PHP version under Dashboard, Tools, Site Health, Info, Server.
- Update WordPress core, all plugins, and all themes to their latest versions first. You want to start from the most current codebase before changing PHP.
- Run the PHP Compatibility Checker plugin to identify known issues.
- Manually check your most important plugins for PHP version support on their repository pages or changelogs.
- Take a full backup of files and the database. Verify it is restorable.
On staging:
- Clone your production site to a staging environment.
- Change the PHP version on staging to your target version.
- Test your entire site: homepage, key landing pages, blog posts, contact forms, checkout flows, login processes, admin dashboard operations, and any custom integrations.
- Check the error logs for new warnings, deprecation notices, or fatal errors.
- Fix or replace any incompatible plugins or themes.
On production:
- Change the PHP version on your live site.
- Monitor error logs and site performance for 48 hours.
- Verify all important functionality one more time.
Post-Upgrade Monitoring Checklist
Once your production site is running on the new PHP version, here is what to monitor over the first 48 hours:
| Check | What to Look For | Action if Found |
|---|---|---|
| Error logs | Deprecation warnings, fatal errors | Identify source plugin, plan fix |
| Homepage | Visual appearance, load time | Compare to pre-upgrade baseline |
| Forms | Submission success | Test all form types |
| Admin dashboard | Accessible, no error notices | Check all major admin pages |
| E-commerce (if applicable) | Checkout flow, product display | Complete test transaction |
| Performance | Page load times | Compare with Lighthouse or GTmetrix |
If you need to update PHP on WordPress from 7.4 to 8.4, consider whether an intermediate step makes sense. Going 7.4 to 8.0 first, then 8.0 to 8.4, can help isolate which version transition causes any issues. For sites moving from 8.2 or 8.3 to 8.4, the jump is typically smooth enough to do directly.
When Not to Upgrade PHP
Timing matters. Do not upgrade PHP:
- During a major sales event, if you run a WooCommerce store
- Right before a large marketing campaign, a donor solicitation, or a membership renewal push
- On a Friday afternoon before a weekend when nobody is available to respond if something goes wrong
The best time for a PHP upgrade is during a quiet period with at least a few business days of monitoring runway afterward. For our clients, we coordinate PHP upgrades during planned maintenance windows and communicate the timeline in advance.
Also, do not upgrade if important plugins have not confirmed compatibility with your target PHP version. A plugin that has not been updated in over a year is a red flag. Check the support forums and changelogs before proceeding.
The Security Case for Staying Current
Running end-of-life PHP is not just a performance issue. PHP 7.4 has had critical vulnerabilities discovered after its end-of-life date, including remote code execution flaws. The PHP project for EOL versions will never patch these vulnerabilities.
Your site is running on software with known security holes that will remain open permanently.
Beyond direct PHP vulnerabilities, outdated PHP creates indirect risks:
- Plugin lockout: Plugin developers increasingly require PHP 8.0 or higher, which means sites stuck on 7.4 cannot install security updates for their plugins.
- Forced upgrades: Some managed hosting providers have started auto-upgrading PHP on their platforms, which can break unprepared sites.
- Insurance complications: Some cyber insurance policies require "current, supported software," so EOL PHP could complicate a claim.
The reality is that 22% of WordPress sites are still running PHP 7.4, which has been end-of-life for over three years. If your site is one of them, this should be a priority.
When Your Host Upgrades PHP for You
Some hosting providers take PHP upgrades out of your hands. WP Engine, for example, automatically upgrades sites when a PHP version reaches end of life. You cannot defer it. They send multiple email warnings beforehand, but the upgrade is happening whether you are ready or not.
SiteGround offers a "Managed PHP" option that automatically updates your version. Other hosts simply remove older PHP versions from their platform after a certain date.
Here is how the major hosting providers handle PHP upgrades:
| Hosting Provider | Auto-Upgrade PHP? | Control Level | Rollback Option | Testing Support |
|---|---|---|---|---|
| WP Engine | Yes (forced schedule) | Limited | Limited | PHP Test Driver tool |
| SiteGround | Optional (managed) | Full (manual) | Yes | None built-in |
| Cloudways | No | Per-server control | Yes | None built-in |
| Kinsta | No | Per-site control | Yes | None built-in |
| GoDaddy/Bluehost | No | cPanel selector | Yes | None built-in |
| FatLab (managed) | No (new server migration) | Full | Zero-downtime cutover | Full regression testing |
If you receive a notice from your host that a PHP upgrade is coming, treat it as a deadline.
"If you get a notice from your host that they're going to do a PHP upgrade, you're going to want to reach out to a developer and get your site tested beforehand."
If you do not, you are rolling the dice on whether your plugins and theme are compatible. We have seen too many organizations learn about this the hard way, after the upgrade has already happened, and their site is not working.
This is one of the strongest arguments for proactive PHP management rather than reactive scrambling when your host forces a change.
Frequently Asked Questions
What PHP version should I use for WordPress in 2026?
PHP 8.4 is the best PHP version for most WordPress sites in 2026. It is actively supported with bug fixes and security patches through December 2028, and the major plugin developers have had time to ensure compatibility. PHP 8.3 is also a solid choice if you want the broadest possible plugin support. If you are still on PHP 7.4, 8.0, or 8.1, all three are end-of-life and should be upgraded as soon as possible.
Does upgrading PHP make WordPress faster?
Yes, and the improvement is measurable. Moving from PHP 7.4 to PHP 8.4 delivers roughly a 6.6% improvement in requests per second for standard WordPress sites. For WooCommerce stores, the gain is more dramatic, around 21% more requests per second on PHP 8.4 compared to 7.4. The biggest performance jump comes from leaving PHP 7.x behind entirely. Incremental gains between 8.x versions are smaller but still real.
How do I check my WordPress PHP version?
In your WordPress dashboard, go to Tools, then Site Health, then Info, and expand the Server section. Your current PHP version will be listed there. You can also see PHP information on most hosting provider dashboards, typically under the server or software configuration section.
Can upgrading PHP break my WordPress site?
It can, which is why staging is non-negotiable for PHP upgrades. The most common issues come from plugins using deprecated PHP functions, particularly older commercial plugins, niche add-ons with small development teams, and anything not updated in the past year. The PHP 7.x to 8.0 jump was the most disruptive transition, but even moving between 8.x versions can trigger deprecation warnings in certain plugins. Testing on a staging copy of your site before changing production eliminates the risk of an unexpected outage.
What is the difference between PHP end-of-life and active support?
Each PHP version receives two years of active support, during which it gets both bug fixes and security patches. After that, it moves to two years of security-only support, receiving patches only for critical vulnerabilities. Once both periods expire, the version reaches end-of-life and receives no updates of any kind. Running an end-of-life PHP version means known security vulnerabilities will never be patched.
Keeping PHP Current Going Forward
PHP releases a new version every November. Each version has a four-year total lifespan. Keeping your WordPress PHP version up to date is not a one-time task. It is an ongoing part of website maintenance, just like WordPress core, plugin, and theme updates.
The organizations that handle this well are those with a maintenance plan in place, whether that is an internal process or an outsourced relationship with a team like ours. The ones that struggle are the ones who only think about PHP when they see a warning in their WordPress dashboard or get an urgent email from their hosting provider.
If you are managing your own WordPress site and this feels like one more thing to track, that is a reasonable reaction. PHP upgrades sit at the intersection of server administration and WordPress management, and they require a comfort level with both.
Professional WordPress maintenance is designed specifically to handle this kind of infrastructure-level work so that organizations can focus on their actual mission.
For a broader view of how PHP upgrades fit into the full picture of keeping WordPress current, our WordPress Update Guide covers the complete update strategy, from plugins and themes to core and PHP. And if you want to understand why choosing the right WordPress maintenance provider matters for exactly this kind of work, we have written about that too.