Synced 17 Jun 2026 22:27 UTC Account
← All products

PHP

PHP · Web / Runtime
↻ RSS feed
Monitors PHP and tailors your dashboard to that exact version.
8.5.7 · latest cycle/100 Unknown

Summary iPlain-English security verdict for PHP, generated from its current health score, actively-exploited vulnerabilities, and latest supported version.

PHP's security status could not be assessed at the last sync — vulnerability data was unavailable.

Disclosure trend iNew CVEs published for PHP each year (NVD). A higher bar means more disclosures that year — more scrutiny, not necessarily less safe.

'19
'20
'21
'22
'23
'24
'25
'26

Patch priority — what to act on iThe issues to fix first — actively exploited (CISA KEV) first, then by exploitation probability (EPSS), then severity. Each row's "→ fixed in" is the earliest version that patches it; "see advisory" means no fixed version is published.

No urgent unpatched issues identified. ✓

How to patch PHP — step-by-step to the latest secure version →

Get alerted about PHP

Be emailed the moment PHP gets a newly exploited vulnerability (CISA KEV) or a release reaches end of life. Free · double opt-in · unsubscribe anytime.

We email only on real events for PHP — no marketing, no sharing, and we never know what you run. Track your whole stack →

Monitor up to 200 products — freeHit ☆ Monitor on anything you run, then sign in (no password) to sync your stack across devices and unlock smart insights, risk history & CSV/JSON exports. Sign in free →

Versions & lifecycle iWhen each release line stops receiving security patches (end-of-life). After EOL there are no more fixes — plan upgrades before these dates.

How long each PHP release line is supported — and when it sunsets. Select a line for its full report.

Dec31'29 PHP 8.5EOL 2029-12-31
Dec31'28 PHP 8.4EOL 2028-12-31
Dec31'27 PHP 8.3EOL 2027-12-31
Dec31'26 PHP 8.2EOL 2026-12-31
Dec31'25 PHP 8.1ended 2025-12-31
Nov26'23 PHP 8.0ended 2023-11-26
Nov28'22 PHP 7.4ended 2022-11-28
Dec6'21 PHP 7.3ended 2021-12-06
Nov30'20 PHP 7.2ended 2020-11-30
Dec1'19 PHP 7.1ended 2019-12-01
Jan10'19 PHP 7.0ended 2019-01-10
Dec31'18 PHP 5.6ended 2018-12-31

Full PHP end-of-life dates & support timeline →

8.5 latest 8.5.7 Supported until 2029-12-318.5.7 → 8.4 latest 8.4.22 Supported until 2028-12-318.4.22 → 8.3 latest 8.3.31 Supported until 2027-12-318.3.31 → 8.2 latest 8.2.31 Supported until 2026-12-318.2.31 → 8.1 latest 8.1.34 End of life ended 2025-12-318.1.34 → 8.0 latest 8.0.30 End of life ended 2023-11-268.0.30 → 7.4 latest 7.4.33 End of life ended 2022-11-287.4.33 → 7.3 latest 7.3.33 End of life ended 2021-12-067.3.33 → 7.2 latest 7.2.34 End of life ended 2020-11-307.2.34 → 7.1 latest 7.1.33 End of life ended 2019-12-017.1.33 → See all upcoming end-of-life dates →

Frequently asked

Is PHP safe and patched?

PHP's security status could not be assessed at the last sync — vulnerability data was unavailable.

What should I do about PHP now?

Upgrade PHP to the latest supported release (8.5.7) or later and apply available security updates, then confirm against PHP's official advisory.

When does PHP reach end-of-life?

The latest supported PHP release is 8.5.7. After end-of-life a release no longer receives security patches.

Which versions of PHP are still receiving security updates?

Supported PHP release lines (latest 8.5.7): 8.5, 8.4, 8.3, 8.2. End-of-life releases no longer receive security patches.

Informational only, from public data (NVD · CISA KEV · EPSS · endoflife.date), and can lag or miss vendor-specific fixes. Always confirm against PHP's official advisory before you patch or upgrade — PHP official site ↗