WordPress is an open source CMS that uses PHP as the frontend and MySQL in the backend. It is mostly used for blogging but it supports forums, media galleries, and online stores as well. WordPress was released on May 27, 2003 by its founders Matt Mullenweg and Mike Little. It also includes a plugin architecture and template system. The WordPress plugin architecture allows users to extend the features and functionality of their website or blog. As of February 2019, WordPress.org has 54,402 free plugins available and 1,500+ premium plugins. WordPress users also have the freedom to create and develop their own custom themes as long as they follow WordPress standards.
Before looking into WordPress enumeration and exploitation, let's first understand the architecture on which WordPress runs.
