Wordpress is by far the most popular CMS in the world. Over 60% of the websites are using Wordpress. It was the first CMS that was free and comprehensible for editors. And it was (and still is) really easy to start. Create your own blog/website in minutes, using just your browser and click next-next-finish. If you want more control, there are hundreds (thousands?) of hosting providers offering 1-click-install on your own 1USD per month webserver. To top it of, Wordpress has a very large ecosystem offering more extensions than you can ever want or need. All for free or at very low rates.
What they do
Originally, Wordpress was a blog system. But over the years it has grown to a full blown CMS. Opinions vary on how easy it is to work with. Fact is that we have a generation of communication and marketing specialists that know how to work with Wordpress and feel comfortable with that. It is important to realize as there is a vast number of professionals who are not tech savvy and want to be employed untill retirement. They tend to choose the tools they know and avoid tech risks.
Strong points of Wordpress
- If you use themes and modules of reliable sources, you can automate upgrades without any problems.
- If you want any functionality, it is available. Even for free or at very low costs.
- All other applications create Wordpress plugins
- There is a lot of documentation
- Page builders like Divi give more creative power to editors
- Advanced custom fields is a top notch solution for editing structured content
Weak points of Wordpress
- Security. By far number 1 of the weaknesses. Wordpress was not designed to be secure. Sure, there are roles and permissions but time and time again, the vulberabilities show major flaws in the architecture and code. No software is free from vulnerabilities but Wordpress is almost as dangerous to have as Joomla.
There are tools to harden your Wordpress site but that only confirms that it was not built well.
- Security at number 2 as well. Because of the market share, it is very rewarding for hackers to target Wordpress. Automated scanners, script kiddies...all of them at the look out for Wordpress.
- Security 3: 50% of all Wordpress modules have not been updated the last 2 years. More than 10% has not been updated for over 7 years.
- Security 4: 90% of all website hacks were Wordpress websites, most of them running updated versions. So, security issues are not just developers saying 'my platform is better than your platform', it is very real and happening.
- Usability. Although many people think it is easy to use, it is actually not.
- The community. Most of them are end users. The ones that are developers are 9 out of 10 times not developers but administrators. Nothing wrong with that but the number of developers is actually very low. If you would raise the bar to 'competent developers', you end up with just a handful per country. And all of them freelance developers. If you are looking for a larger company that offers professional Wordpress development & support, you can keep looking.
- The market place. If you are looking for a calendar, you can make a choice of 20 of them. Only 3 are actually good, well maintained and supported. If you are not aware of this, it means you're up for a surprise when installing extensions. You have no idea of the quality and whether it will smack you in the face or when. Now, it probably won't crash your site directy but with the wrong modules, you're steering to upgrade hell later.
A common example is that a module 'developer' copies an existing module, tweaks a bit and calls it a new module. Not aware that it will actually call the same resources as the original which can cause dead locks, RAM or CPU eating alive etc.
- Wordpress has no real concept of multi site. Yes, you can add an extension that makes it a multi site, but it is all or nothing. Extensions are always on every site. Users are always on every site. Everything is everywhere. This makes maintenance and upgrading very difficult.