WordPress

WordPress
WordPress logo.svg
Developer(s) Matt Mullenweg, Ryan Boren, Donncha O Caoimh
Initial release May 27, 2003[1]
Stable release 3.0.1 / July 29, 2010; 6 months ago (2010-07-29)
Development status Active
Operating system Cross-platform
Platform PHP
Type Weblog software
License GPLv2[2]
Website http://wordpress.org/

WordPress is an open source CMS, often used as a blog publishing application powered by PHP and MySQL. It has many features including a plugin architecture and a templating system. Used by over 12% of the 1,000,000 biggest websites, WordPress is the most popular CMS in use today.[3]

It was first released on May 27, 2003, by Matt Mullenweg[1] as a fork of b2/cafelog. As of August 2010, version 3.0 had been downloaded over 12.5 million times.[4]

Contents

Features

WordPress template hierarchy

WordPress has a templating system, which includes widgets that can be rearranged without editing PHP or HTML code, as well as themes that can be installed and switched between. The PHP and HTML code in themes can also be edited for more advanced customizations. WordPress also features integrated link management; a search engine-friendly, clean permalink structure; the ability to assign nested, multiple categories to articles; and support for tagging of posts and articles. Automatic filters that provide for proper formatting and styling of text in articles (for example, converting regular quotes to smart quotes) are also included. WordPress also supports the Trackback and Pingback standards for displaying links to other sites that have themselves linked to a post or article. Finally, WordPress has a rich plugin architecture which allows users and developers to extend its functionality beyond the features that come as part of the base install.

Native applications exist for Android,[5] iPhone/iPod Touch,[6] and BlackBerry[7] which provide access to some of the features in the WordPress Admin panel and work with WordPress.com and many WordPress.org blogs.

Deployment

WordPress can be deployed using various methods on a hosting environment. Users have the option to download the current version of WordPress from WordPress.org. From there, they can upload the source code and its dependencies to their hosting environment.

WordPress can also be installed via package management system or deploying a ready-to-use TurnKey WordPress appliance, which does not require any manual setup or configuration.[8]

WordPress can also be installed via the Microsoft Web Platform Installer which installs WordPress on Windows and IIS. The Web PI will automatically detect any missing dependencies such as PHP or MySQL then install and configure them[9] before installing WordPress.

Advanced users have the option to have WordPress downloaded to their server and consistently updated using SVN. This will allow users to remain updated easily.[10]

Free hosting services such as WordPress.com offer users an easy way to deploy a WordPress blog on-line without having to install WordPress on your own web server. Many shared web hosting services also offer automated WordPress installation through their control panel.

History

b2/cafelog, more commonly known as simply b2 or cafelog, was the precursor to WordPress.[11] b2/cafelog was estimated to have been employed on approximately 2,000 blogs as of May 2003. It was written in PHP for use with MySQL by Michel Valdrighi, who is now a contributing developer to WordPress. Although WordPress is the official successor, another project, b2evolution, is also in active development.

WordPress first appeared in 2003 as a joint effort between Matt Mullenweg and Mike Little to create a fork of b2.[12] The name WordPress was suggested by Christine Selleck, a friend of Mullenweg.[13]

In 2004 the licensing terms for the competing Movable Type package were changed by Six Apart and many of its users migrated to WordPress, causing a marked and continuing growth in WordPress's popularity. By October, 2009, the 2009 Open Source CMS Market Share Report reached the conclusion that WordPress enjoys the greatest brand strength of any open source content management systems. That conclusion was based on an extensive analysis of rate of adoption patterns and brand strength and was backed by a survey of users.[14]

Awards

In 2007 WordPress won a Packt Open Source CMS Award.[15]

In 2009 WordPress won the best Open Source CMS Award.[16]

Removal of sponsored themes

On July 10, 2007, following a discussion on the WordPress ideas forum[17] and a post by Mark Ghosh in his blog Weblog Tools Collection,[18] Matt Mullenweg announced that the official WordPress theme directory at http://themes.wordpress.net would no longer host themes containing sponsored links.[19][20] Although this move was criticized by designers and users of sponsored themes, it was applauded by WordPress users who consider such themes to be spam. The official WordPress theme directory ceased to accept any new themes, including those without sponsored links, shortly after the announcement was made.[21] Sponsored themes are still available elsewhere, as well as free themes with additional sponsored links added by third parties.[22][23]

On July 18, 2008, a new theme directory opened at http://wordpress.org/extend/themes/. It was styled along the same lines as the plug-ins directory,[24] Any theme that is uploaded to it will be vetted, first by an automated program and then by a human.

On December 12, 2008, over 200 themes were removed from the WordPress theme directory as they did not comply with GPL License requirements.[25][26] Today, author mentions are permitted in each theme but the official policy does not allow for sponsorships or links to sites distributing non-GPL compatible themes. Non-GPL compliant themes are now hosted on other theme directories.

Releases

Most WordPress releases are code named after well-known jazz musicians starting after version 1.0.[27]

Version Code Name Release Date Notes
0.70 27 May 2003 contained the same file structure as its predecessor, b2/cafelog. Only 0.71-gold is available for download in the official WordPress Release Archive page.
1.2 Mingus 22 May 2004 It's notable for containing the support of Plugins. The same Plugin identification headers are still used unchanged in the latest WordPress releases.
1.5 Strayhorn 17 February 2005 Strayhorn added a range of vital features, such as the ability to manage static pages and a template/theme system. It was also equipped with a new default template (code named Kubrick[28]) designed by Michael Heilemann.
2.0 Duke 31 December 2005 This version added rich editing, better administration tools, image uploading, faster posting, an improved import system, and completely overhauled the back end. WordPress 2.0 also offered various improvements to plugin developers.[29]
2.1 Ella 22 January 2007 In addition to correcting security issues, version 2.1 featured a redesigned interface, enhanced editing tools (including integrated spell check and auto save), and improved content management options.[30]
2.2 Getz 16 May 2007 Version 2.2 featured widget support for templates, updated Atom feed support, and speed optimizations.[31]
2.3 Dexter 24 September 2007 Version 2.3 featured native tagging support, new taxonomy system for categories, and easy notification of updates. 2.3 also fully supports Atom 1.0 along with the publishing protocol, and included some much needed security fixes.[32]
2.5 Brecker 29 March 2008 Developers skipped the release of version 2.4 so version 2.5 contained two releases worth of new code. WordPress 2.5 saw a complete overhaul of the administration interface and the WordPress website was also redesigned to match the new style.[33]
2.6 Tyner 15 July 2008 Tyner contained new features that made WordPress a more powerful CMS: you can now track changes to every post and page and easily post from wherever you are on the web.[34]
2.7 Coltrane 11 December 2008 It once again saw the administration interface completely redesigned. It also introduces an automated upgrade feature, and automatic installation of plugins from within the administration interface.[35]
2.8 Baker 10 June 2009 Baker offered improvements in speed, and automatic installation of themes from within the administration interface. It also introduces the CodePress editor for syntax highlighting and a redesigned widget interface.[36]
2.9 Carmen 19 December 2009 Carmen offers a global undo feature, a built-in image editor, batch plugin updating, and numerous under-the-hood tweaks.[37]
3.0 Thelonious 17 June 2010 Thelonious offers a new default theme called "Twenty Ten" along with new theme APIs; the merge of WordPress and WordPress MU, creating the new multi-site functionality; and numerous under-the-hood tweaks.[38]

Future

After the release of WordPress 3.0, Matt Mullenweg updated the WordPress blog letting the community know that his team will be taking a release cycle off from the WordPress software to focus on expanding and improving the WordPress community.[39][40]

Vulnerabilities

Many security issues[41][42] were uncovered in the software, particularly in 2007 and 2008. According to Secunia, WordPress in April 2009 had 7 unpatched security advisories (out of 32 total), with a maximum rating of "Less Critical".[43] Secunia maintains an up-to-date list of WordPress vulnerabilities.[44]

In January 2007, many high-profile Search engine optimization (SEO) blogs, as well as many low-profile commercial blogs featuring AdSense, were targeted and attacked with a WordPress exploit.[45] A separate vulnerability on one of the project site's web servers allowed an attacker to introduce exploitable code in the form of a back door to some downloads of WordPress 2.1.1. The 2.1.2 release addressed this issue; an advisory released at the time advised all users to upgrade immediately.[46]

In May 2007, a study revealed that 98% of WordPress blogs being run were exploitable because they were running outdated and unsupported versions of the software.[47]

In a June 2007 interview, Stefen Esser, the founder of the PHP Security Response Team, spoke critically of WordPress's security track record, citing problems with the application's architecture that made it unnecessarily difficult to write code that is secure from SQL injection vulnerabilities, as well as some other problems.[48]

Multi-blogging

Prior to WordPress 3.0, WordPress supported one blog per installation, although multiple concurrent copies may be run from different directories if configured to use separate database tables. WordPress Multi-User (WordPress MU, or just WPMU) was a fork of WordPress created to allow multiple blogs to exist within one installation that is able to be administered by a centralized maintainer. WordPress MU makes it possible for those with a website to host their own blogging community, as well as control and moderate all the blogs from a single dashboard. WordPress MU adds eight new data tables for each blog.

WordPress MU merged with WordPress as part of the 3.0 release.[49]

Key developers

WordPress development is led by Ryan Boren and Matt Mullenweg. Mullenweg and Mike Little were co-founders of the project.

The core contributing developers include Dougal Campbell, Mark Jaquith, Donncha Ó Caoimh, Andy Skelton, Michel Valdrighi and Peter Westwood.

Though largely developed by the community surrounding it, WordPress is closely associated with Automattic, where 50% of WordPress's core commiters are employees.[50]

WordPress is also developed by its community, including WP testers, a group of volunteers who test each release. They have early access to nightly builds, beta versions and release candidates. Errors are documented in a special mailing list, or the project's Trac tool.

See also

References

  1. 1.0 1.1 Mullenweg, Matt. "WordPress Now Available". WordPress. http://wordpress.org/news/2003/05/wordpress-now-available/. Retrieved 2010-07-22. 
  2. "WordPress › About » GPL". WordPress.org. http://wordpress.org/about/gpl/. Retrieved 2010-06-15. 
  3. "Usage of content management systems for websites". W3Techs. http://w3techs.com/technologies/overview/content_management/all. Retrieved 2010-08-31. 
  4. "WordPress Download Counter". wordpress.org. http://wordpress.org/download/counter/. Retrieved 2010-08-17. 
  5. "WordPress publishes native Android application". Android and Me. 2010-02-02. http://androidandme.com/2010/02/news/wordpress-publishes-native-android-application/. Retrieved 2010-06-15. 
  6. "Idea: WordPress App For iPhone and iPod Touch". WordPress iPhone & iPod Touch. http://www.altafsayani.com/2008/07/12/wordpress-app-for-iphone-and-ipod-touch/. Retrieved 2008-07-12. 
  7. "WordPress for BlackBerry". WordPress. http://blackberry.wordpress.org/. Retrieved 2009-12-27. 
  8. "WordPress Appliance". TurnKey Linux Virtual Appliance Library. http://www.turnkeylinux.org/wordpress. Retrieved 2009-12-11. 
  9. "The Easy Way To Install PHP on Windows". SitePoint. http://articles.sitepoint.com/article/php-windows-web-platform-installer. Retrieved 2009-11-20. 
  10. "Installing and Updating WordPress with SVN". WordPress. http://codex.wordpress.org/Installing/Updating_WordPress_with_Subversion. Retrieved 2009-12-28. 
  11. Andrew Warner, Matt Mullenweg. (2009-09-10) (MPEG-4 Part 14). The Biography Of WordPress – With Matt Mullenweg. [Podcast]. Mixergy. Event occurs at 10:57. http://mixergy.com/the-biography-of-wordpress-with-matt-mullenweg/. Retrieved 2009-09-28. "b2 had actually, through a series of circumstances, essentially become abandoned." 
  12. "WordPress › About". wordpress.org. http://www.wordpress.org/about/. Retrieved 2007-03-04. "WordPress started in 2003 (...)" 
  13. "Big Pink Cookie". http://www.bigpinkcookie.com/2008/01/24/the-importance-of-being-matt/. Retrieved 2009-03-10. 
  14. ""2009 Open Source CMS Market Share Report," page 57, by water&stone and CMSWire Oct, 2009". Cmswire.com. 2009-12-17. http://www.cmswire.com/downloads/cms-market-share/. Retrieved 2010-06-15. 
  15. "Open Source CMS Award Previous Winners". Packt Publishing Technical & IT Book Store. http://www.packtpub.com/open-source-cms-award-previous-winners. Retrieved 2010-06-15. 
  16. "Open Source CMS Awards". http://www.packtpub.com/award. Retrieved 2009-10-10. 
  17. "Idea: Remove Sponsored Themes from WordPress.org". WordPress Ideas. http://wordpress.org/extend/ideas/topic.php?id=553. Retrieved 2007-08-20. 
  18. Mark Ghosh (2007-07-10). "No Sponsored themes on WeblogToolsCollection". http://weblogtoolscollection.com/archives/2007/07/10/no-sponsored-themes-on-weblogtoolscollection/. Retrieved 2007-07-18. 
  19. Matt Mullenweg (2007-07-10). "WLTC High Ground". http://photomatt.net/2007/07/10/wltc-high-ground/. Retrieved 2007-07-18. 
  20. Lorelle van Fossen (2007-07-11). "It’s Official. Sponsored WordPress Themes Are Out.". Lorelle on WordPress. http://lorelle.wordpress.com/2007/07/11/its-official-sponsored-wordpress-themes-are-out/. Retrieved 2007-07-25. 
  21. Matt Mullenweg (2007-07-15). "Version 3.0". http://themes.wordpress.net/blog/4421/version-30/. Retrieved 2008-05-18. 
  22. Mark Ghosh (2007-08-04). "WARNING: TemplatesBrowser dot com". Weblog Tools Collection. http://weblogtoolscollection.com/archives/2007/08/04/warning-templatebrowser-dot-com/. Retrieved 2008-05-18. 
  23. Mark Ghosh (2007-11-09). "Blogstheme.com WARNING". Weblog Tools Collection. http://weblogtoolscollection.com/archives/2007/11/09/blogsthemecom-warning/. Retrieved 2008-05-18. 
  24. Joseph Scott (2008-07-18). "Theme Directory". WordPress Blog. http://wordpress.org/development/2008/07/theme-directory/. Retrieved 2007-08-20. 
  25. "200 Themes Removed From WordPress.org – Matt Explains Why". Blogherald.com. 2008-12-12. http://www.blogherald.com/2008/12/12/200-themes-removed-from-wordpressorg-matt-explains-why. Retrieved 2010-06-15. 
  26. [1]
  27. "Roadmap". Blog. Wordpress.org. http://wordpress.org/about/roadmap/. Retrieved 2010-06-15. 
  28. "Kubrick at Binary Bonsai". Binarybonsai.com. http://binarybonsai.com/kubrick. Retrieved 2010-06-15. 
  29. "WordPress › Blog » WordPress 2". Wordpress.org. http://wordpress.org/development/2005/12/wp2/. Retrieved 2010-06-15. 
  30. "WordPress 2.1 - codex". Codex.wordpress.org. 2007-01-22. http://codex.wordpress.org/Version_2.1. Retrieved 2010-06-15. 
  31. "WordPress › Blog » WordPress 2.2". Wordpress.org. http://wordpress.org/development/2007/05/wordpress-22/. Retrieved 2010-06-15. 
  32. "WordPress › Blog » WordPress 2.3". Wordpress.org. http://wordpress.org/development/2007/09/wordpress-23/. Retrieved 2010-06-15. 
  33. "WordPress › Blog » WordPress 2.5". Wordpress.org. http://wordpress.org/development/2008/03/wordpress-25-brecker/. Retrieved 2010-06-15. 
  34. "WordPress › Blog » WordPress 2.6". Wordpress.org. http://wordpress.org/development/2008/07/wordpress-26-tyner/. Retrieved 2010-06-15. 
  35. "WordPress › Blog » WordPress 2.7 “Coltrane”". Wordpress.org. http://wordpress.org/development/2008/12/coltrane/. Retrieved 2010-06-15. 
  36. "WordPress › Blog » 2.8 Release Jazzes Themes and Widgets". WordPress.org. http://wordpress.org/development/2009/06/wordpress-28/. Retrieved 2010-06-15. 
  37. "WordPress › Blog » WordPress 2.9, oh so fine". Wordpress.org. http://wordpress.org/development/2009/12/wordpress-2-9/. Retrieved 2010-06-15. 
  38. "WordPress › Blog » WordPress 3.0 “Thelonious”". Wordpress.org. http://wordpress.org/development/2010/06/thelonious/. Retrieved 2010-06-17. 
  39. http://www.webmaster-source.com/2010/06/18/wordpress-3-0-now-available/
  40. "WordPress 3.0 Released, Adding Multi-User and Streamlined User Interface". http://www.thewhir.com/web-hosting-news/061810_WordPress_30_Released_Adding_Multi_User_and_Streamlined_User_Interface. 
  41. "Wincent Colaiuta". 2007-06-21. http://wincent.com/a/about/wincent/weblog/archives/2007/06/wordpress_flaw.php. 
  42. "David Kierznowski". 2007-06-28. http://blogsecurity.net/wordpress/interview-280607/. 
  43. "Secunia Advisories for WordPress 2.x". 2009-04-07. http://secunia.com/advisories/product/6745/. 
  44. "Secunia WordPress 2.x Vulnerability Report". Secunia.com. http://secunia.com/advisories/product/6745/. Retrieved 2010-06-15. 
  45. WordPress Exploit Nails Big Name Seo Bloggers | Threadwatch.org
  46. "WordPress 2.1.1 dangerous, Upgrade to 2.1.2". WordPress.org. 2 March 2007. http://wordpress.org/development/2007/03/upgrade-212/. Retrieved 2007-03-04. 
  47. "Survey Finds Most WordPress Blogs Vulnerable". Blog Security. 2007-05-23. http://blogsecurity.net/wordpress/articles/article-230507/. Retrieved 2010-06-15. 
  48. "Blog Archive » Interview with Stefan Esser". BlogSecurity. 2007-06-28. http://blogsecurity.net/wordpress/interview-280607/. Retrieved 2010-06-15. 
  49. WordPress 3.0 “Thelonious”
  50. "About". Automattic.com. http://automattic.com/about/. Retrieved 2010-06-15. 

External links