Most large publishing companies, the white house and various government departments all use WordPress for their main sites.
Its the third party integrations that cause security issues, not the core code.
Sure, and who is vetting the plugins? How often are unmaintained plugins replaced in those popular websites? How quickly are vulnerabilities patched and applied?
The whole thing is easy to set up, but unlikely to be properly maintained.
Most large publishing companies, the white house and various government departments all use WordPress for their main sites. Its the third party integrations that cause security issues, not the core code.
Yet the third party integrations are pretty much the whole point of WordPress.
Indeed, but using poor ones or not keeping them updated is what causes the wrong opinion that WordPress isn’t solid.
30% of the most popular 1000 websites are built on WordPress supposedly.
Sure, and who is vetting the plugins? How often are unmaintained plugins replaced in those popular websites? How quickly are vulnerabilities patched and applied?
The whole thing is easy to set up, but unlikely to be properly maintained.