A standalone PHP script for managing WordPress plugins when the admin area is inaccessible.
This tool provides a web-based interface for listing, activating, and deactivating WordPress plugins directly through database manipulation, bypassing the WordPress admin area. It's particularly useful when you're locked out of WordPress due to plugin conflicts or errors.
- Direct access to plugin management when WordPress admin is unavailable
- Lists all installed plugins with metadata (name, version, author)
- Shows active/inactive status for each plugin
- Allows activation/deactivation of multiple plugins at once
- Works independently of WordPress core
- IP-based access restriction for security
- PHP 7.4+ (uses arrow functions)
- MySQL/MariaDB database
- Direct server file access
- Database credentials (automatically extracted from wp-config.php)
- Download
wpprm.phpto your WordPress root directory (same location as wp-config.php) - Edit the
ALLOWED_IPSarray to include your IP address - Access the script directly in your browser:
https://your-site.com/wpprm.php
This script provides direct access to your WordPress database and plugin system. Always:
- Update the
ALLOWED_IPSarray with your specific IP address - Remove the script from your server after use
- Never leave this accessible on a production site
- Rename the script for extra security
- Access the script URL in your browser
- You'll see a table of all plugins with their current status
- Check the boxes next to plugins you want to modify
- Select "Activate" or "Deactivate" from the dropdown
- Click "Apply to Selected" to perform the action
If a plugin is causing your site to crash:
- Upload and configure this script
- Access it directly via your browser
- Find the problematic plugin in the list
- Select it and choose "Deactivate"
- Apply changes and remove the script
After a clean WordPress installation:
- Check boxes next to all your essential plugins
- Select "Activate" from the dropdown
- Apply changes
The script:
- Reads your wp-config.php file to get database credentials
- Connects directly to your database
- Scans the plugins directory to find all installed plugins
- Reads the active_plugins option from the options table
- Provides a UI to modify this list
- Updates the database when changes are submitted
- Access Denied: Verify your IP address and update the
ALLOWED_IPSarray - No Plugins Found: Ensure the script is in the WordPress root directory
- Database Connection Failed: Check that wp-config.php is accessible and contains valid credentials
- Jonathan Moore - JMooreWV
This script is released under the MIT License. See the LICENSE file for details.
This tool was developed as an emergency recovery solution and is inspired by WordPress's own plugin management system.