WordPress plugins add features to your website — contact forms, SEO tools, security, e-commerce, and much more. There are over 60,000 free plugins in the WordPress repository.
Installing a Free Plugin
- Log in to WordPress admin.
- Click Plugins > Add New in the left sidebar.
- Search for the plugin by name (e.g., WPForms, Yoast SEO, Wordfence).
- Click Install Now next to the plugin.
- Click Activate Plugin.
The plugin is now active. Find its settings in the WordPress admin sidebar.
Installing a Premium Plugin (.zip file)
- Log in to WordPress admin.
- Click Plugins > Add New.
- Click Upload Plugin at the top.
- Click Choose File, select the plugin .zip, and click Install Now.
- Click Activate Plugin.
Managing Plugins
Updating Plugins
Go to Plugins > Installed Plugins. Plugins with available updates show an Update now link. Click it for each plugin, or go to Dashboard > Updates to update all at once.
Deactivating vs Deleting
- Deactivate — stops the plugin from running but keeps it installed (useful for troubleshooting)
- Delete — removes the plugin files completely. Any settings stored by the plugin may also be deleted
Troubleshooting a Problematic Plugin
- If your site broke after installing/updating a plugin, go to Plugins.
- Find the problematic plugin and click Deactivate.
- If you cannot access the admin, rename the plugin folder via cPanel File Manager (see WordPress White Screen of Death guide — WP-07).
Essential Plugins for Every WordPress Site
- Yoast SEO or Rank Math — on-page SEO optimisation
- Wordfence Security — firewall and malware scanning
- WPForms or Contact Form 7 — contact forms
- UpdraftPlus — additional backup management
- WP Super Cache or LiteSpeed Cache — page caching for speed
- Really Simple SSL — forces HTTPS and fixes mixed content
Important: Do not install plugins from unknown sources or websites offering 'nulled' (cracked) premium plugins — these almost always contain malware.
