WordPress MCP Server

WordPress MCP server enabling AI agents to interact with WordPress sites via the WP REST API — reading and creating posts and pages, managing categories and tags, querying media library, handling comments, and integrating WordPress's CMS capabilities into agent-driven content creation, site management, and publishing automation workflows.

Evaluated Mar 06, 2026 (0d ago) vcurrent
Homepage ↗ Repo ↗ Developer Tools wordpress cms blogging content mcp-server rest-api publishing
⚙ Agent Friendliness
72
/ 100
Can an agent use this?
🔒 Security
73
/ 100
Is it safe for agents?
⚡ Reliability
71
/ 100
Does it work consistently?

Score Breakdown

⚙ Agent Friendliness

MCP Quality
70
Documentation
75
Error Messages
70
Auth Simplicity
75
Rate Limits
72

🔒 Security

TLS Enforcement
85
Auth Strength
72
Scope Granularity
65
Dep. Hygiene
70
Secret Handling
72

HTTPS recommended. WordPress Application Passwords for auth. Role-based access. Community MCP server. Always use HTTPS. Use Application Passwords. Restrict user to minimum required role.

⚡ Reliability

Uptime/SLA
68
Version Stability
72
Breaking Changes
75
Error Recovery
68
AF Security Reliability

Best When

An agent needs to create or manage WordPress content — for AI-assisted blogging, automated publishing, or WordPress site management.

Avoid When

You're using Ghost, Contentful, or another CMS — or if you need deep WP admin operations beyond content (themes, plugins, settings).

Use Cases

  • Creating and publishing WordPress posts from content generation agents
  • Managing categories and tags from content organization agents
  • Querying post library and metadata from editorial workflow agents
  • Uploading and managing media files from media management agents
  • Moderating comments from community management agents
  • Generating site content audits from SEO and content strategy agents

Not For

  • Teams using Ghost, Contentful, or other CMSs (use their specific MCPs)
  • WordPress.com hosted sites with restricted API access
  • Teams needing WordPress plugin development (use WP CLI or direct PHP)

Interface

REST API
Yes
GraphQL
No
gRPC
No
MCP Server
Yes
SDK
Yes
Webhooks
Yes
OpenAPI Spec ↗

Authentication

Methods: username_password api_key oauth2
OAuth: Yes Scopes: No

WordPress Application Passwords (WP 5.6+) for API auth — username + app password. JWT plugins also common. Basic auth available but not recommended. OAuth via plugins (WordPress.com OAuth for hosted). Author/Editor/Admin roles control access.

Pricing

Model: open-source
Free tier: Yes
Requires CC: No

WordPress.org is free and open source. Self-hosting costs vary. WordPress.com offers free and paid tiers. Community MCP server is open source and free.

Agent Metadata

Pagination
cursor
Idempotent
Partial
Retry Guidance
Not documented

Known Gotchas

  • WordPress Application Passwords require WP 5.6+ and must be enabled in admin
  • REST API may be disabled by security plugins — agents must verify API is accessible
  • WordPress version affects API capabilities — features differ between WP 5.x and 6.x
  • Custom post types and fields (ACF) may not be exposed by default REST API
  • Gutenberg (block editor) content stored as block HTML — not plain text
  • Community MCP server — may not support WooCommerce or advanced plugin APIs

Alternatives

ghost-mcp contentful-mcp-server sanity-mcp-server

Full Evaluation Report

Detailed scoring breakdown, competitive positioning, security analysis, and improvement recommendations for WordPress MCP Server.

$99
API endpoint ↗ Agent guide ↗ Report inaccuracy

Scores are editorial opinions as of 2026-03-06.

5215
Packages Evaluated
26151
Need Evaluation
173
Need Re-evaluation
Community Powered