Managing WordPress Plugins And Themes¶
Use this page to keep WordPress plugins and themes current, necessary, and safe to update. Remove unused items, avoid overlapping plugins, and test important updates before changing production.
Keep The List Lean¶
| Item | Recommendation |
|---|---|
| Inactive plugins | Delete them unless you have a specific reason to keep them. |
| Unused themes | Keep the active theme and one current default WordPress theme as a fallback. |
| Abandoned plugins | Replace plugins that no longer receive updates. |
| Duplicate features | Avoid multiple plugins doing the same job, such as caching or security. |
Before Updating Plugins Or Themes¶
- Create a backup.
- Read update notes for major version changes.
- Update one important plugin at a time when possible.
- Test the public site and WordPress admin after updates.
- If the site is critical, test on a clone first.
-
Backups
-
Staging
-
Updates
Plugin Quality Checks¶
Prefer plugins that:
- Are updated regularly.
- Have a clear maintainer.
- Support your WordPress and PHP versions.
- Are not abandoned or replaced by a better-supported option.
- Do not duplicate functionality already handled by another plugin.
Theme Checks¶
For themes:
- Keep the active theme updated.
- Keep one current default WordPress theme as a fallback.
- Delete old unused themes.
- Confirm child themes are still connected to a maintained parent theme.
- Avoid editing theme files directly unless those changes are tracked.
Avoid nulled plugins and themes
Nulled or pirated plugins often contain malware or backdoors. They also do not receive normal security updates.
If An Update Breaks The Site¶
- Restore from the backup if the site is down.
- Disable the most recently updated plugin or theme.
- Check whether the issue is PHP-version related.
- Contact Fused if you cannot access wp-admin or need help restoring a backup.
Related Security Work¶
After cleaning up plugins and themes, review administrator users, 2FA, and registration settings.