WordPress is an open source and free content management system (CMS) based on PHP and MySQL. In order to work, WordPress must be installed on a web server, which will be part of an internet hosting service or a network host in its own right. Examples of possible first scenarios are services like WordPress.com, and the second case is a computer running WordPress.org software packages. Local computers can be used for testing and testing purposes of a single user. Features include plugin architecture and template system. WordPress is used by 30.6% of the top 10 million websites by April 2018. Thus, WordPress is the most popular website management or blogging system used on the Web, supporting over 60 million websites. WordPress has also been used for other application domains such as Pervasive display system (PDS).
WordPress was released on May 27, 2003, by its founders, Matt Mullenweg and Mike Little, as b2/cafelog forks. WordPress is released under the GPLv2 (or later) license.
Video WordPress
Overview
WordPress has a web template system using a template processor. The architecture is the front controller, routing all requests for non-static URIs to a single PHP file that parses the URI and identifies the target page. This allows support for permalinks that are more human readable.
Themes
WordPress users can install and switch between different themes. Themes allow users to change the look and function of WordPress sites without changing the core code or site content. Each WordPress site requires at least one theme to be present and each theme should be designed using standard WordPress with structured PHP, valid HTML (HyperText Markup Language), and Cascading Style Sheets (CSS). Themes can be directly installed using the WordPress "Appearance" administration tool on the dashboard, or the theme folder can be copied directly to the theme directory, for example via FTP. The PHP, HTML, and CSS found in themes can be directly modified to change theme behavior, or themes can be "child" themes that inherit settings from other themes and selectively override features. WordPress themes are generally classified into two categories: free and premium. Many free themes are listed in the WordPress theme directory, and premium themes are available for purchase from the marketplace and individual WordPress developers. WordPress users can also create and develop their own custom themes. Free Underscores themes created by WordPress developers have become a popular base for new themes.
Plugins
The WordPress plugin architecture allows users to extend the features and functionality of a website or blog. WordPress has more than 50,316 plugins available, each of which offers special functionality and features that allow users to customize their sites to their specific needs. These adjustments range from search engine optimization, to client portals used to display personal information to signed in users, to content management systems, to content displaying features, such as adding widgets and navigation bars. Not all available plugins are always aligned with the upgrade and as a result they may not work properly or not work at all. Most plugins are available through WordPress itself, either through downloading and manually installing files via FTP or via the WordPress dashboard. However, many third parties offer plugins through their own websites, many of which are paid packages.
Web developers looking to develop plugins need to learn a WordPress hook system consisting of over 300 hooks divided into two categories: action hooks and filter hooks.
Mobiles
The native apps exist for WebOS, Android, iOS (iPhone, iPod Touch, iPad), Windows Phone, and BlackBerry. This app, designed by Automattic, has options like adding new posts and blog pages, commenting, moderating comments, replying to comments in addition to the ability to view statistics.
Other features
WordPress also features integrated link management features; clean search engine permalink structure; ability to assign multiple categories to a post; and support for tagging posts. Automatic filters are also included, providing standard formatting and text styling in posts (for example, changing regular quotes to smart quotes). WordPress also supports Trackback and Pingback standards for displaying links to other sites related to posts or articles. WordPress posts can be edited in HTML, using a visual editor, or using one of a number of plugins that allow customized editing features.
Maps WordPress
Multi-user and multi-blogging
Before version 3, WordPress supports one blog per installation, although multiple concurrent copies can be run from different directories if configured to use separate database tables. WordPress Multisite (formerly referred to as WordPress Multi-User, WordPress MU, or WPMU) is a WordPress fork created to allow many blogs to exist in one installation but can be managed by a centralized manager. WordPress MU allows for those who have a website to host their own blog community, as well as control and moderate all blogs from one dashboard. WordPress MS adds eight new data tables for each blog.
At the launch of WordPress 3, WordPress MU has joined WordPress.
History
b2/cafelog , better known as b2 or cafelog , is the pioneer for WordPress. b2/cafelog is estimated to have been installed on some 2,000 blogs in May 2003. It was written in PHP for use with MySQL by Michel Valdrighi, who is now a contributing developer for WordPress. Although WordPress is the official successor, another project, b2evolution, is also in active development.
WordPress first appeared in 2003 as a joint effort between Matt Mullenweg and Mike Little to make a b2 fork. Christine Selleck Tremoulet, a friend of Mullenweg, suggested the name WordPress .
In 2004, the licensing terms for the Competitive Movable Type package were changed by Six Apart, which resulted in many of the most influential users migrating to WordPress. In October 2009, CMS Reports MarketShare Open Source concluded that WordPress enjoys the greatest brand strength of any open source content management system.
As of February 2017, WordPress is used by 58.7% of all websites whose content management systems are known. This is 27.5% of the top 10 million websites.
Awards and acknowledgments
The award-winning "Best of open source software" Infoworld: Collaboration ", awarded in 2008.
Open Source CMS Awards Winners "Overall Best Open Source CMS", awarded in 2009.
The winner of "CMS Hall of Fame category digitalsynergy in 2010 Open Source", awarded in 2010.
The winner of the "Bossie award for Best Open Source Software" Infoworld, awarded in 2011.
CMS Critic Award Winner "Best CMS for Personal Websites", awarded in 2015.
Release history
WordPress's main release is codenamed after a famous jazz musician, starting after version 1.0.
Future
Matt Mullenweg stated that the future of WordPress is on social, mobile, and as an application platform.
Vulnerability
Many security issues have been found in software, especially in 2007, 2008, and 2015. According to Secunia, WordPress in April 2009 had seven unspecified security guidelines (out of 32 in total), with a "Less Critical" maximum rating. Secunia maintains a list of the latest WordPress vulnerabilities.
In January 2007, many high profile search engine optimization blogs, as well as many low profile commercial blogs featuring AdSense, were targeted and attacked with WordPress exploits. A separate vulnerability on one of the project web site servers allows attackers to introduce exploitable code in the form of a back door for some WordPress 2.1.1 downloads. Release 2.1.2 addresses this issue; the adviser released at that time advises all users to update immediately.
In May 2007, a study revealed that 98% of running WordPress blogs could be exploited because they run obsolete and unsupported versions of software. Partly to reduce this problem, WordPress makes software updates much easier, a "one click" automatic process in version 2.7 (released in December 2008). However, the filesystem security settings required to enable the update process can be an additional risk.
In a June 2007 interview, Stefan Esser, founder of the PHP Security Response Team, spoke critically of WordPress security footprint, citing problems with the application architecture that made it unnecessarily difficult to write secure code from SQL injection vulnerabilities, as well as several other issues.
As of June 2013, it was found that some of the 50 most downloaded WordPress plugins are vulnerable to common Web attacks such as SQL and XSS injections. Separate inspections of the top 10 e-commerce plugins show that seven of them are vulnerable.
In an effort to improve better security, and to streamline the overall update experience, automatic background updates are introduced in WordPress 3.7.
The individual installs of WordPress can be protected with security plugins that prevent users from enumerating, hiding resources and thwarting checks. Users can also protect their WordPress installation by taking steps such as keeping all WordPress installations, themes, and plugins updated, using only trusted themes and plugins, editing the site's file.htaccess to prevent many types of SQL injection attacks and blocking unauthorized access to sensitive files. It's important to keep your WordPress plugin up-to-date as potential hackers can easily list all the plugins the site uses, and then run a scan to look for any vulnerabilities to the plugin. If vulnerabilities are found, they can be exploited to allow hackers to upload their own files (such as the PHP Shell script) that collects sensitive information.
Developers can also use tools to analyze potential vulnerabilities, including WPScan, WordPress Auditor and WordPress Sploit Framework developed by 0pc0deFR. This type of research tool is known for its vulnerabilities, such as CSRF, LFI, RFI, XSS, SQL injection, and user enumeration. However, not all vulnerabilities can be detected by the tool, so it is advisable to check other plugin, theme, and add-in codes from other developers.
In March 2015, it was reported by many security and SEO experts including Search Engine Land that the SEO plugin for WordPress called Yoast used by over 14 million users worldwide has vulnerabilities that could lead to exploits in which a hacker can perform SQL Injection Blind. To fix that problem they immediately introduced the latest version 1.7.4 of the same plugin to avoid any interruption on the web due to the security holes possessed by the plugin.
In January 2017, the security auditor at Sucuri identified a vulnerability in the REST API of WordPress that would allow unauthenticated users to modify any posts or pages within a site running WordPress 4.7 or higher. The auditors quietly notify the developer of WordPress, and within six days WordPress released a high priority patch to version 4.7.2 which addresses the issue.
The minimum PHP PHP version requirement is PHP 5.2, released on January 6, 2006, and which is not supported by the PHP Group and has not received any security patches since January 6, 2011.
In the absence of specific changes to their default formatting code, WordPress-based websites use canvas elements to detect whether the browser is capable of creating emoji correctly. Because Tor Browser does not currently distinguish between legitimate use of the Canvas API and attempts to do canvas fingerprinting, it warns that the website is trying to 'extract HTML5 canvas image data'. Continuing efforts to find solutions to convince privacy advocates while retaining the ability to check for appropriate emoji rendering capabilities.
Development and support
Primary developers
Matt Mullenweg and Mike Little are one of the founders of this project. The main core developers include Helen Hou-SandÃÆ', Dion Hulse, Mark Jaquith, Matt Mullenweg, Andrew Ozz, and Andrew Nacin.
WordPress is also developed by its community, including WP testers , a group of volunteers who test each release. They have early access to the wake-up version, beta, and release candidates. The errors are documented in a custom mailing list, or the project Trac tool.
Though largely developed by surrounding communities, WordPress is closely associated with Automattic, the company founded by Matt Mullenweg. On September 9, 2010, Automattic submitted the WordPress trademark to the newly created WordPress Foundation, which is an umbrella organization that supports WordPress.org (including software and archives for plugins and themes), bbPress and BuddyPress.
WordCamp developers and user conferences
WordCamps is a locally held relaxed conference that includes everything related to WordPress. The first event was WordCamp 2006 in August 2006 in San Francisco, which lasted one day and had more than 500 participants. The first WordCamp outside San Francisco was held in Beijing in September 2007. Since then, there have been over 507 WordCamps in over 207 cities in 48 different countries around the world. WordCamp San Francisco 2014 is the last official annual conference of developers and WordPress users taking place in San Francisco, which has now been replaced with WordCamp US.
WordPress users who like to speak in public can register to speak and lead the session.
Support
The main WordPress support website is WordPress.org. This support website hosts Codex WordPress, an online manual for WordPress, and a live repository for WordPress information and documentation, and WordPress Forums, an active online community of WordPress users.
See also
- Weblog software
- List of content management systems
- WordPress.com
References
External links
- Official website
- WordPress in Curlie (based on DMOZ)
Source of the article : Wikipedia
0 Comments