dismiss Step into the future! Click here to switch to the beta php.net site
downloads | documentation | faq | getting help | mailing lists | licenses | wiki | reporting bugs | php.net sites | conferences | my php.net

search for in the

What is PHP?

PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML. If you are new to PHP and want to get some idea of how it works, try the introductory tutorial. After that, check out the online manual.

Ever wondered how popular PHP is? See the Netcraft Survey.

Thanks To

Related sites

Community

Syndication

You can grab our news as an Atom feed.

Upcoming Events [add]

October

Conferences

25. Annual Polish PHP conference.
27. Berlin, International conference
27. International PHP Conference
27. WebTech Conference

User Group Events

28. Tampa Bay Florida PHP
29. PHPUG Wuerzburg
29. PHP User Group Roma
29. PHPUBSP

November

Conferences

04. PHP with YII Training Event
08. CodeConnexx 2013
16. Madison PHP Conference
18. ZendCon Europe 2013
21. PHP Forum 2013
21. Forum PHP 2013

User Group Events

03. PHP meeting online in China
03. meeting de LAMPistas en La Paz
05. SW Florida Linux Users Group
05. Berlin PHP Usergroup Meeting
05. PHPNW: PHP North West user group
05. Greater Toronto Area PHP UG
06. BostonPHP
06. Pittsburgh PHP Meetup Group
06. Kuala Lumpur PHP
07. Hannover
07. Meetup Day
07. PHP London
07. Boston PHP Meetup
07. Atlanta PHP User Group
07. Seattle PHP Meetup Group
07. SF PHP Meetup
07. Minnesota PHP User Group
07. OrlandoPHP User Group
07. PHPTwente Meetup
07. Vilnius PHP community meetup
09. Nezahualcoyotl PHP Ramptors
10. Los Angeles PHP Developers Group
11. Queen City (Charlotte) PHP
12. Hamburg
12. Dallas PHP/MySQL Users Group
12. Dallas PHP Users Group (DPUG)
12. OKC PHP Meetup
12. Nashville PHP User Group
12. Oklahoma City PHP User Group
12. Buffalo PHP Meetup
12. Milwaukee PHP User\'s Group
13. PHP User Group Stuttgart
13. South Florida PHP Users Group
13. DC PHP Developer's Community
13. VenturaPHP Developers Meetup
14. Austin PHP Meetup
14. Meeting usergroup Dortmund
14. PHP Usergroup Frankfurt/Main
14. Seattle PHP Meetup/Users Group
14. 010PHP Rotterdam User Group
16. Los Angeles LAMPsig
16. Kansas City
18. BrightonPHP User Group
19. PHP Brisbane Meetup Group
19. Chattanooga PHP Developers
19. PHP North-East User Group
19. NWO-PUG User Group Meeting
19. Lake / Kenosha PHP User Group
19. Tallahassee PHP User Group
19. Melbourne PHP Users Group
19. Edinburgh PHP User Group
21. OINK-PUG (Cincinnati, Ohio)
21. Utah PHP Users Group Meeting
21. Denver - FRPUG
21. San Diego PHP
21. AmsterdamPHP Meetup
21. UPHPU Utah PHP Users
21. Kent PHP User Group
25. Tampa Bay Florida PHP
26. New York
26. AzPHP
26. PHPUG Wuerzburg
26. Brisbane PHP User Group
26. PHP User Group Roma
26. PHPUBSP
28. Memphis PHP

Training

01. Advanced PHP Development
02. Core and Advanced PHP Workshop
04. Word Press Administration
04. Magento Development Class London
04. Fund of Magento Development-CHI
04. Curso on-line de PHP
04. Basic PHP Course
04. Formation Zend Framework
05. Curso on-line de PHP-MySQL
05. PHP Class at CalTek
06. PHP: Web-sites and MySQL
11. PHP Training
11. Formation PHP MySQL - France
13. Developing on WordPress
13. Magento Checkout Part I
14. WordPress Web Summit
15. Web Security
25. Formation PHP expert - France
25. PHP Course Johannesburg

A further update on php.net

24-Oct-2013

We are continuing to work through the repercussions of the php.net malware issue described in a news post earlier today. As part of this, the php.net systems team have audited every server operated by php.net, and have found that two servers were compromised: the server which hosted the www.php.net, static.php.net and git.php.net domains, and was previously suspected based on the JavaScript malware, and the server hosting bugs.php.net. The method by which these servers were compromised is unknown at this time.

All affected services have been migrated off those servers. We have verified that our Git repository was not compromised, and it remains in read only mode as services are brought back up in full.

As it's possible that the attackers may have accessed the private key of the php.net SSL certificate, we have revoked it immediately. We are in the process of getting a new certificate, and expect to restore access to php.net sites that require SSL (including bugs.php.net and wiki.php.net) in the next few hours.

To summarise, the situation right now is that:

  • JavaScript malware was served to a small percentage of php.net users from the 22nd to the 24th of October 2013.
  • Neither the source tarball downloads nor the Git repository were modified or compromised.
  • Two php.net servers were compromised, and have been removed from service. All services have been migrated to new, secure servers.
  • SSL access to php.net Web sites is temporarily unavailable until a new SSL certificate is issued and installed on the servers that need it.

Over the next few days, we will be taking further action:

  • php.net users will have their passwords reset. Note that users of PHP are unaffected by this: this is solely for people committing code to projects hosted on svn.php.net or git.php.net.

We will provide a full post mortem in due course, most likely next week. You can also get updates from the official php.net Twitter: @official_php.

A quick update on the status of php.net

24-Oct-2013

On 24 Oct 2013 06:15:39 +0000 Google started saying www.php.net was hosting malware. The Google Webmaster Tools were initially quite delayed in showing the reason why and when they did it looked a lot like a false positive because we had some minified/obfuscated javascript being dynamically injected into userprefs.js. This looked suspicious to us as well, but it was actually written to do exactly that so we were quite certain it was a false positive, but we kept digging.

It turned out that by combing through the access logs for static.php.net it was periodically serving up userprefs.js with the wrong content length and then reverting back to the right size after a few minutes. This is due to an rsync cron job. So the file was being modified locally and reverted. Google's crawler caught one of these small windows where the wrong file was being served, but of course, when we looked at it manually it looked fine. So more confusion.

We are still investigating how someone caused that file to be changed, but in the meantime we have migrated www/static to new clean servers. The highest priority is obviously the source code integrity and after a quick:

git fsck --no-reflog --full --strict

on all our repos plus manually checking the md5sums of the PHP distribution files we see no evidence that the PHP code has been compromised. We have a mirror of our git repos on github.com and we will manually check git commits as well and have a full post-mortem on the intrusion when we have a clearer picture of what happened.

PHP 5.4.21 Released

17-Oct-2013

The PHP development team announces the immediate availability of PHP 5.4.21. About 10 bugs were fixed. All PHP 5.4 users are encouraged to upgrade to this version.

For source downloads of PHP 5.4.21 please visit our downloads page, Windows binaries can be found on windows.php.net/download/. The list of changes is recorded in the ChangeLog.

PHP 5.5.5 has been released

16-Oct-2013

The PHP development team announces the immediate availability of PHP 5.5.5. This release fixes about twenty bugs against PHP 5.5.4, some of them regarding the build system. All PHP users are encouraged to upgrade to this new version.

For source downloads of PHP 5.5.5 please visit our downloads page, Windows binaries can be found on windows.php.net/download/. The list of changes is recorded in the ChangeLog.

PHP 5.4.20 released

19-Sep-2013

The PHP development team announces the immediate availability of PHP 5.4.20. About 30 bugs were fixed. All PHP 5.4 users are encouraged to upgrade to this version.

For source downloads of PHP 5.4.20 please visit our downloads page, Windows binaries can be found on windows.php.net/download/. The list of changes is recorded in the ChangeLog.

News Archive

 
Atom | show source | credits | stats | sitemap | contact | advertising | mirror sites