Widespread use of end-of-life PHP versions creates security vulnerabilities

9/10 Critical

55% of PHP teams are still running at least one EOL version, with 70% of those lacking security confidence. Deprecated versions like PHP 7.1 (44% of WordPress sites) present genuine security risks and are frequent targets for hackers.

PHP
Category
security
Workaround
none
Stage
monitoring
Freshness
persistent
Scope
language
Recurring
Yes
Buyer Type
team

Sources

Collection History

Query: “What are the most common pain points with PHP for developers in 2025?4/8/2026

Almost 55% are still working with at least one end-of-life (EOL) PHP version is a cause for concern since EOL software — if not supported — presents a genuine security risk. Among teams that indicated a lack of confidence in their PHP applications' security, over 70% also use EOL versions.

Created: 4/8/2026Updated: 4/8/2026