- Uninstall every useless plugin. Keep your number of WordPress plugins to the minimum. Keep a low number of WordPress plugins and prefer to code PHP rather than installing a new WordPress plugin. When you code PHP, you implement simple features that you understand. This is the best approach to avoid putting your website at risk.
- Choose WordPress plugins that are constantly updated. When you download a new plugin, look at the updated date. You may be surprised. Some WordPress plugins haven’t been updated for several years and it exposes your website to PHP errors.
- Prefer to use a 3rd party rather than installing a WordPress plugin. For example, don’t install a “search and replace” plugin. Better try to look into the MySQL database to make the change using a SQL query or using a standalone PHP script. Don’t install a plugin to look for broken links, use a broken link checker website or download our software to scan your website.
- Check logs and HTML code after installing a new plugin. Check the source of the page. Check the HTTP headers. See if there are any PHP errors or any errors in the access log of your website following the installation of this website. However, I must tell you that even if you do all those steps, this may not be enough. Some errors are really stealthy. For example, a plugin can return a different content depending on the client (mobile or desktop) for example. This may not generate any PHP errors, any errors in the access log and you may not be able to see it.