wp_set_password( string $password, int $user_id )

Updates the user’s password with a new encrypted one.


For integration with other applications, this function can be overwritten to instead use the other package password checking algorithm.

Please note: This function should be used sparingly and is really only meant for single-time application. Leveraging this improperly in a plugin or theme could result in an endless loop of password resets if precautions are not taken to ensure it does not execute on every page load.



(string) (Required) The plaintext new user password


(int) (Required) User ID


File: wp-includes/pluggable.php

function wp_set_password( $password, $user_id ) {
	global $wpdb;

	$hash = wp_hash_password( $password );
	$wpdb->update($wpdb->users, array('user_pass' => $hash, 'user_activation_key' => ''), array('ID' => $user_id) );

	wp_cache_delete($user_id, 'users');


Version Description
WP-2.5.0 Introduced.