WordPress Security: Critical Vulnerabilities In 10 Popular Plugins (2020 Case Study)

WordPress is often portrayed as an insecure platform that should be avoided for enterprise-grade projects. Having spent the past decade deploying WordPress for SMEs, I’ve busted this myth numerous times – including our guide for important security considerations disclosing our experience working with banks and other financial institutions. As the ubiquitous platform now powers over 40% of the Internet, being a vendor common to attacks from hackers is expected. Any industry leader in tech gathers more attention and “script kiddies” when popularity exceeds a certain point. The Main Security Risk With WordPress The WordPress Core platform (the free software available… Continue Reading

Is WordPress Suitable For Large and Complex WordPress Websites?

Is WordPress suitable for large and complex WordPress websites? You should be concerned about building any complex project regardless of the underlying framework or a CMS. Let me quote the original scope from the comment before discussing further: I am currently in the process of obtaining quotes to build a website. The website is likely to be quite complex, with two user groups (e.g.buyers and sellers), payment system, etc. Should I be concerned by a quote from a web designer who proposes to build it within WordPress? WordPress Platform Fundamentals The first thing to consider is the high-end scope of… Continue Reading

WordCamp Bucharest – Tips for Enterprise WordPress Projects

I spent the weekend at Bucharest attending the local WordCamp -- a wonderful event made possible thanks to passionate organizers and volunteers, top-notch speakers, generous sponsors, and the Romanian WordPress community! [caption id="attachment_13239" align="aligncenter" width="1200"] WordPress enterprise tips at WordCamp Bucharest[/caption] The topic of my presentation was "Tips for Enterprise WordPress Projects". I did a quick survey before filling out the form, assessing the topics that some local peers would be eager to hear about. Enterprise-grade WordPress applications and large organizations using WordPress were among the most cited ones. And here's the summary of the talk: Decide if enterprises are… Continue Reading

How to Identify, Debug, and Improve Messed Up WordPress Code

Debugging and improving upon a messed up WordPress project is quite a challenge. A common misconception in the WordPress world is that a website would work "just fine" by setting up a few WordPress plugins combined with a premium theme. Sure - you can also set up a massive enterprise platform that consumes 8GB of RAM for the first load but it doesn’t make it efficient or the right choice for a successful project. Building a website that is supposed to scale and grow with time by bundling a few dozen plugins in it is “doing it wrong”. WordPress Plugins… Continue Reading

How to Find Leads for a WordPress Development Company?

In order to grow as a professional WordPress developer, you have to work with businesses that believe in expert development and value the long-term results. More often than not, business owners are fooled by the media and marketing collateral online explaining how easy development is, solutions sold for $20 - $100 or site builders that would supposedly “revolutionize your business online”. Here are some tips that would steadily grow your value and bring some business to you. 1. Perfect Your Skills When I switched to full-time freelancing, I’ve already had a 5-year technical college degree, 4 years of full-time development… Continue Reading

14 Ways To Dramatically Speed Up Your Website From A Technical Perspective

.. But what if the website can’t handle that much traffic? That would reflect in 4xx and 5xx error codes, unresolved pages or complete downtime. As we know, 404s are not a big deal SEO-wise, but customer dissatisfaction can affect your bounce rates and impact your overall strategy in the long run. Performance for UX, SEO, Cost Savings and More DIY site builders and hobbyist service providers are everywhere. This leads to low-cost WordPress solutions bundled with numerous plugins which ends up being a mess. While I appreciate WordPress as a solution that’s free and open source, with a bearable learning… Continue Reading

What Are The Main Security Considerations for WordPress-Based Enterprises?

Security is incredibly important for all the right reasons. However, a small blog or a 5-page business website is less prone to becoming a target as compared to a popular enterprise where competitors, top black hats, and other 3rd parties may have an incentive to receive some proprietary information which may be very, very expensive. WordPress Security is also one of the 15 main obstacles that enterprises report in WordPress. I've discussed the list in a separate post based on our sales meetings and calls with various enterprises and what helped us sign several deals with multi-billion dollar brands. Massive… Continue Reading

What Is the Best Language or Framework For Building a SaaS Application?

I’ve seen successful SaaS applications online built on every single web programming language that I’ve ever heard of. Some of the more extreme ones specializing in certain fields do include Haskell, Erlang, Go, Dark and others for certain applications behind the scenes. A subscription-based business can leverage a SaaS framework or proceed with a custom build, depending on the business needs and the long-term goals for scaling the solution forward. Here are the 4 main considerations when selecting a language for your SaaS. 1. What Are the Business and Technical Requirements? All programming languages and frameworks are tailored to solving… Continue Reading

How Does WordPress Maintain Backward Compatibility Over Time?

Backward compatibility is one of the pillars of the platform that comes with the highest priority. Over the past ten years, the technological progress in WordPress has been moving somewhat slowly, but that ensures that no WordPress website would be left behind. For quite some time now, WordPress is officially supporting all PHP versions starting from PHP 5.2.4. Of course, PHP 7 is the recommended version for all hosts, but it would be unfair to bump it up to 5.6 and screw tens of millions of websites that still run on low-quality hosting infrastructures. Stats gathered by all websites running… Continue Reading

Quora AmA Recap – Enterprise WordPress Development Business

I've been spending plenty of time on Quora over the past months. In fact, it probably is my primarily place online - excluding work-related activities with my team, clients, and partners. It's a brilliant platform for various reasons: I educate myself on areas where I lack enough expertise. I validate my theories through the answers of others. I receive instant feedback on my comments and answers through views, upvotes, and the overall ranking system. Some of my answers have been republished on Forbes, Inc, HuffPost, Apple News. I also follow a number of CEOs and directors from companies that I respect and… Continue Reading