WordPress (WP, WordPress.org) is a MySQL or MariaDB database written in PHP and is a free and open-source content management system (CMS). Features include a plugin architecture and a template system that is referred to as themes in WordPress. WordPress was originally created as a blog-publishing system but has evolved to support other types of web. Content includes more common mailing lists and forums, media galleries, membership sites, learning management systems (LMS), and online stores. WordPress is used by more than 60 million websites, with 33.6% of the top 10 million websites using WordPress as of April 2019, one of the most popular content management system solutions used.
It was released on May 27, 2003, by American developer Matt Mullenweg, founder of 2003, and English developer Mike Little, as WordPress B2 / Cadel fork. The Software is published under the GPLV2 (or later) license.
To work, WordPress needs to be installed on a web server, either as part of an Internet hosting service such as WordPress.com or a computer software package to run a computer powered by WordPress as a network host in its own right. A local computer can be used for single-user testing and learning purposes.
Overview
"WordPress is the factory that creates webpages" is a key metaphor designed to illustrate the functions of WordPress: it saves content and enables a user to create and publish webpages without the need for anything other than domains and hosting services.
WordPress has a web template system using a template processor. Its architecture is the front controller, routing all requests for unstable URIs to a single PHP file that parses the URI and identifies the target page. This helps for more human-readable permalinks.
Themes
WordPress users can install and switch between different themes. Themes allow users to change the look and functionality of a WordPress website without changing the original code or site content. Every WordPress website should have at least one theme and each theme should be designed using WordPress values including structured PHP, valid HTML (hypertext markup Language), and cascading style sheets (CSS). Themes can be installed directly on the dashboard using the WordPress "Presence" administration tool, or the theme folders can be copied directly to the theme directory, for example via FTP. PHP, HTML, and CSS found in themes can be changed directly to change the behavior of the theme, or a theme can be a "child" theme Settings from another theme inherit and selectively override features. WordPress themes are generally categorized into two categories: free and premium. Many free themes are listed in the WordPress Themes directory (also known as the repository), and premium themes are available for purchase from Marketplace and individual WordPress developers. WordPress users can too Create and develop their own custom themes. Free themes and scores created by WordPress developers have become a popular basis for new themes. Free themes
Plugins
WordPress plugin architecture allows users to expand the features and functionality of a website or blog. As of January 2020, WordPress.org has 55,487 plugins available, each of which has custom functions and features that enable users to tailor sites to their specific needs. However, it does not include premium plugins (about 1,500+), Not listed in the WordPress.org repository. These customizations range from search engine optimization (SEO) to content display features such as client portals, content management, widgets, and the addition of navigation bars used to display personal information for login users. Not all available plugins are always upgraded and included as a result They can't work properly or they can't work at all. Most plugins are available through WordPress itself by downloading and manually installing files via FTTP or the WordPress Dashboard. However, many third parties provide plugins through their own websites, many of which are packaged.
Web developers who want to develop plugins need to learn the WordPress hook system, which has more than 300 hooks divided into two sections: action hooks and filter hooks.
Mobile Applications
Phone apps for WordPress exist for Webs, Android, iOS (iPhone, iPod Touch, iPad), Windows Phone, and Blackberry. Designed by Automatic, these apps have the option of adding new blog posts and pages, commenting, editing comments, viewing statistics, and replying to comments.
Accessibility
The WordPress Accessibility team has worked to improve the accessibility of the original WordPress as well as to support a clear identification of accessible themes. The WordPress Accessibility team provides continuing educational support on web accessibility and inclusive design. WordPress Accessibility Coding Standards state that "All new or updated code published in WordPress must comply with Web Content Accessibility Guidelines 2.0 at the AA level."
Other Features
WordPress also has integrated link management; A search engine-friendly, clean permalink structure; the Ability to assign multiple categories to posts; And support for tagging posts. Automatic filters are also included, providing standardized formatting and text styling in posts (for example, converting regular quotes into smart quotes). Supports WordPress trackback And the value of pingbacks for displaying links to other sites that have themselves linked to a post or an article. HTML posts can be edited in WordPress posts, using a visual editor, or using a number of plugins that allow for various customized editing features.
Multi-user and multi-blogging
Prior to version 3, WordPress supported one blog per installation, although multiple simultaneous copies from different directories could be run if configured to use separate database tables. WordPress Multisite (formerly known as WordPress Multi-User, WordPress MU, or WPMU) is a WordPress fork that allows multiple blogs to exist in one installation. But capable of being managed by a central maintainer. WordPress enables MU to host their own blogging communities with websites as well as control and control all blogs from a single dashboard. WordPress MS adds eight new data tables for each blog.
Since the release of WordPress 3, WordPress MU has merged with WordPress.
History
B2 / Cafelg, commonly known as B2 or Cafelg, was the predecessor of WordPress. The B200 / Cabellian was estimated to have been installed on nearly 2,000 blogs as of May 2003. It was written for use in PHP by Michelle Valdrighi with MySQL, now a contributing developer of WordPress. Although WordPress is the official successor, another project, B2 devolution, is also in active development.
WordPress first appeared in 2003 as a joint effort between Matt Mullenweg and Mike Little to create a fork of B2. Mullenweg's friend Christine Celek suggested the name Kremlin WordPress.
In 2004, the licensing terms of the Competitive Movable Type Package were changed by SixAid, which moved most of its influential users to WordPress. By 2009, October, the Open Source CMS Market Share report concluded that WordPress had enjoyed the most brand power of any open-source content management system.
As of June 2019, WordPress uses 60,000% of websites whose content management system is known. This is 27.5% of the top 10 million websites.
Awards and recognition
* IN the forward winner of the "Open Source Software Awards: Collaboration", awarded in 2006.
* Winner of Overall Best Open Source CMS award in 2009.
* Winner of Digital Science "2010 Open Source Hall of Fame CMS category in 2010", awarded in 2010.
The winner of the 2011 award-winning InfoWorld "Basic Award for Best Open Source Software".
WordPress 5.0 "Bubo"
The 2018, December release of WordPress 5.0, "Bubo", is named in homage to the pioneering Cuban jazz musician Bubo Valdés.
Classic Block.png
New WordPress Page Editor.png
It included a new default editor "Gutenberg" - a block-based editor; This allows users to change their displayed content in a much more user-friendly way than previous iterations. Blocks are abstract units of markup that are composed together, creating the content or layout of a web page. Past content created on WordPress pages is listed under What is referred to as Classic Block. Prior to Gutenberg, several block-based editors were available as WordPress plugins, e.g. Element, and after the release of Gutenberg, it was compared to existing plugins.
Classic Editor plugin
The Classic Editor plugin was created as a result of user preference and gives plugin developers time to update their plugins and adjust to 5.0 releases as a way to help website developers maintain past plugins compatible with WordPress 4.9.7 only. Being classic Installing the Editor plugin restores the "classic" editing experience that existed before the release of WordPress 5.0. The Classic Editor plugin will be supported until at least 2022.
The Classic Editor plugin is active in more than 5,000,000 WordPress organizations.
Future
Matt Mullenweg says that the future of WordPress lies in social, mobile, and application platforms.
Vulnerabilities
The software has uncovered a number of security issues, particularly in 2007, 2008, and 2015. Sec Syconia maintains an up-to-date list of WordPress vulnerabilities.
In 2007 January, many high-profile search engine optimization (SEO) blogs, as well as many low-profile commercial blogs featuring AdSense, were targeted and attacked with a WordPress exploit. The individual vulnerabilities on one of the project site's web servers allowed the attacker to Introduce exploitable code in the form of a door behind a few downloads of WordPress 2.1.1. Release 2.1.2 addresses this issue; A consultation published at this time advised all users to upgrade immediately.
In 2007 May, a survey found that 98% of WordPress blogs were run because they were running older and unsupported versions of the software. To alleviate this problem, it made it easier to update the WordPress software, automated process to "one-click" version 2.7 (released 2006 December). However, the file system security settings required to enable the update process can be an additional risk.
In an interview in 2007 June, Stephen Acer, founder of the PHP Security Response Team, criticized WordPress's security track record and made it unnecessarily difficult to write code protected from SQL injection vulnerabilities as the cause of the application's architecture problems. As well as some other problems.
As of 2013 June, it has been found that most of the 50 downloaded WordPress plugins are at risk for common web attacks such as SQL injection and XSS. A separate inspection of the top 10 e-commerce plugins showed that seven of them were risky.
Automatic background updates were introduced in WordPress 3.7 in an effort to promote enhanced security and streamline the overall update experience.
Individual WordPress installations can be secured with security plugins that save user numbers, hide resources, and thwart investigations. Keeping all WordPress installations, themes, and plugins updated, using only trusted themes and plugins, [109] editing the site's .hatches configuration file allows users to protect their WordPress installations. To prevent many types of SQL injection attacks and to block unauthorized access to sensitive files if supported by a web server. Keeping WordPress plugins up to date is especially important because hackers can easily list all plugins that a site uses and then run a scan. Search for any vulnerabilities against these plugins. If vulnerabilities are found, they can be used to allow hackers, for example, to upload their own files (such as a web shell) that collect sensitive information.
Developers can also use tools to analyze potential vulnerabilities, including WPScan, WordPress Auditor, and the WordPress Split Framework, developed by 0pc0deFR. These types of tools study vulnerabilities known as CSRF, LFI, RFI, XSS, SQL injection, and a number of users. However, not all vulnerabilities can be detected by the tool, so plugins, themes, and other developers are advised to check the code of add-ins.
In 2015 March, it was reported by many security experts and SEOs, including Search Engine Land, that an SEO plugin called Yoast for WordPress, which has more than 14 million users worldwide, has vulnerabilities that could lead to exploitation by hackers Injection. To solve this problem, they simultaneously introduced a new version 1.7.4 of the same plugin to avoid any problems on the web due to security lapses in the plugin.
In January 2017, security auditors at Schurig identified a vulnerability in the WordPress REST API that allows an unauthorized user to edit any post or page within a site running WordPress 4.7 or higher. The auditors silently informed WordPress developers and within six days WordPress released a high-priority patch to version 4.7.2 which solved the problem.
Canvas fingerprinting warnings are usually used with Tor Browser for WordPress-based websites.
According to WordPress 5.2, the minimum PHP version required is PHP 5.6, which was released on August 28, 2014, and is not supported by the PHP Group and has not received any security patches since December 31, 2018. Thus, WordPress recommends using PHP version 7.3. Or more.
In the absence of specific changes to their default formatting code, WordPress-based websites use the canvas element to determine if the browser is able to render emojis correctly. Because Tor Browser does not currently distinguish between the Canvas API and this legitimate use An attempt to fingerprint the canvas, warns that the website is 'trying to extract HTML5 canvas image data'. Ongoing efforts seek to work to reassure privacy advocates while maintaining the ability to verify appropriate emoji rendering capabilities.
Development and Support
Key Developers
Matt Mullenweg and Mike Little were co-founders of the project. The main lead developers include Helen Hugh-Sandy, Diane Hulls, Mark Jackith, Matt Mullenweg, Andrew Oz, and Andrew Nassin.
Also developed by WordPress's community, WP Testers, a group of volunteers who examine each release. They get early access to the build, beta version, and release candidates of the night. Errors are recorded in a special mailing list or project tracking tool.
Although the community around it has grown exponentially, WordPress is closely associated with Automatics, a company founded by Matt Mullenweg. On 9 September 2010, Automatic handed over the WordPress trademark to the newly formed WordPress Foundation, an Umbrella organization that supports WordPress.org (including software and archives for plugins and themes), bb press, and Buddy Press.
Word Camp developer and user conferences
Word Camps are casual, locally related conferences on all aspects of WordPress. The first national event at Word Camp 2006 in August 2006 in San Francisco lasted for one day and was attended by 500 people. The first World Camp outside San Francisco was held in Beijing in September 2000. Since then, there have been more than 1,022 work camps in more than 5 cities in Different countries of the world. WordPress Camp San Francisco 2014 is the latest annual conference of WordPress developers and users in San Francisco, replacing WordPress in the United States. Word camps first ran in Europe in 2013, with regional word camps in other geographic areas held to connect people who are not already active Encourage participants in their local communities, and start community communities in their town. In 2019, the Nordic region had its own Word Camp Nordic. The first World Camp Asia was scheduled to take place in 2020 but was canceled due to the COVID-19 epidemic.
Support
The primary support website for WordPress is WordPress.org. This support website hosts WordPress Codex, an online manual for WordPress and a live archive for WordPress information and documentation, and an active online community of WordPress users, the WordPress Forum.