wordpress-mcp-server
Verified Safeby Banded-antonym160
Overview
A comprehensive AI-powered platform for managing WordPress and WooCommerce sites, covering development, content, security, and performance tasks.
Installation
npm startEnvironment Variables
- WORDPRESS_URL
- WORDPRESS_USERNAME
- WORDPRESS_PASSWORD
Security Notes
The server implements robust security measures for file system operations, including a whitelist approach for allowed directories and file extensions, strict path validation to prevent directory traversal, content scanning for malicious PHP functions (e.g., `eval`, `shell_exec`), and automatic backups with `.htaccess` protection. All endpoints enforce WordPress capabilities (e.g., `manage_options`, `edit_themes`, `edit_plugins`). Environment variables are used for credentials, preventing hardcoded secrets. The high score reflects strong internal safeguards for a tool that grants significant control; however, its power necessitates strong external security practices for the WordPress instance itself.
Similar Servers
mcp-wordpress
AI-driven SEO optimization and comprehensive management for WordPress sites via a Model Context Protocol (MCP) server.
pythonanywhere-mcp-server
This server acts as a Model Context Protocol (MCP) bridge, enabling AI-powered tools to programmatically manage files, web apps, websites, and scheduled tasks on a PythonAnywhere account.
ddev-mcp
Provides AI assistants with DDEV development environment automation for various web projects, managing environments, databases, and executing commands.
mcp-for-woocommerce
Connects WordPress and WooCommerce to AI systems via Model Context Protocol, enabling AI agents to query and manage e-commerce data (products, orders, categories, shipping, payments, taxes) and content (posts, pages).