MCP Adapter for WordPress

MCP Content Manager Premium

Price range: 30,00€ through 250,00€ / year

MCP Content Manager Premium is the most complete MCP plugin for WordPress and WooCommerce. Connect your site with AI assistants like Claude, Cursor, or any client compatible with the Model Context Protocol. Over 300 specialized tools to manage content, products, orders, customers, SEO, page builders (Elementor, Beaver Builder, WPBakery), translation with Smart AI Translate, plugins, WP-CLI, AI image generation, FSE menus, performance, security, and much more. All while talking to your AI assistant. Security system with OAuth authentication, automatic backups, Time Machine with rollback, emergency sentinel, and protected WP-CLI. Developed by José Conti, author of WooCommerce Redsys Gateway.

Clear
Select product options to enable express checkout

Categories: , SKU: N/A

Description

Manage your WordPress and WooCommerce by talking to an AI

Imagine being able to tell an AI assistant: "Create a post about this week's news" and have the post created directly in your WordPress, with its format, categories, and tags. Or ask, "How much have we sold this month?" and have it instantly show you a sales report from your WooCommerce. Or say, "Analyze the performance of my homepage" and get a performance score with specific recommendations. Or ask, "Translate the entire site into English and German" and have your AI translation plugin do it in the background. Or ask, "Show me the widget tree of my page with Elementor" and get the complete structure instantly. That's exactly what MCP Content Manager Premium.

This MCP plugin for WordPress connects your site with artificial intelligence assistants through the protocol MCP (Model Context Protocol), an open standard driven by Anthropic and officially adopted by WordPress. Once installed, your AI assistant can read, create, modify, and manage virtually any aspect of your site, from content to server settings, including WooCommerce, performance, security, page builders, and translation.

We're not talking about a plugin with buttons and screens. We're talking about a direct bridge between AI and WordPress that provides you with over 300 specialized tools. You talk to your assistant, and your assistant executes actions on your site. It is the most complete AI management plugin for WordPress on the market.

What can I do with this MCP plugin for WordPress? Real examples

The best way to understand the potential of MCP Content Manager Premium is with examples. Here are things you can ask your AI assistant once you have the plugin installed:

Content management with AI

  • Create a post about the benefits of organic coffee, place it in the Food category, and add the tags coffee, organic, and health.
  • Find all posts that have not been updated in the last 6 months and tell me which ones need review.
  • Review the links of my last 20 articles and tell me if any are broken.
  • Analyze the SEO of the services page and suggest improvements for the title and description.
  • Generate an image professional for my post about digital marketing and set it as the featured image.

Translation with AI — Smart AI Translate

  • Translate this post into English, German, and French using the configured AI provider.
  • How many posts on the site have outdated translations into English?
  • Queue the translation of the entire site to the configured languages in the background.
  • List the available languages and tell me which ones have pending or outdated translations.

Page Builders with AI — Elementor, Beaver Builder, WPBakery

  • Show me the element tree of the homepage in Elementor.
  • Update the text widget color with ID abc123 in Elementor to #FF0000.
  • Export the layout of the product page and use it as a base for the services page.
  • What builders are active on the site and how many pages does each one use?
  • Compare the layouts of the previous and current versions of the homepage.

WooCommerce: products, orders, and customers managed with AI

  • How much have we sold this month? Give me a report with net sales, number of orders, and average ticket.”
  • What are the 10 best-selling products of the last quarter?
  • Create a discount coupon for 15% off for purchases over €50, valid until the end of the month.
  • Tell me which products are low in stock so I can place an order with the supplier.
  • Find all orders from the customer juan@example.com and tell me how much has been spent in total.
  • Calculate the MRR of my active subscriptions and list those that are about to renew.

Performance: profiling, optimization, and database cleaning

  • Analyze the performance of my homepage and tell me what score it has from 0 to 100.
  • Compare the performance of the product page and the checkout page, which one is slower and why?
  • List the available optimizations and apply all low-risk ones to clean bloat from the core.
  • Clean the database: delete old revisions, orphaned postmeta, spam comments, and expired transients. First, show me what you are going to delete.

Security: auditing, cleaning, and hardening

  • Perform a complete security audit of my site and give me a score.
  • Apply all secure security measures at once.
  • Activate brute force protection with progressive blocking: 5 failures blocks for 15 minutes, 10 failures for an hour, 20 failures for a day.
  • Change the login URL of my site to /my-secret-access.
  • Scan wp-content/ for malware: eval/base64, backdoors, PHP in uploads.
  • Clean the core files by replacing them with the originals from wordpress.org.

Role and capability management with AI

  • List all roles on the site with their capabilities and how many users each has.
  • Create a custom role called 'Marketing' by cloning the Editor role but without permission to delete published posts.
  • Audit the capabilities of the user juan@example.com and tell me if they have any dangerous permissions.
  • Assign the role of Shop Manager to the user maria@example.com so they can manage the store.

Human confirmation for high-risk operations

  • Delete the user test_user and reassign their content to the administrator.
  • Install the plugin WooCommerce from WordPress.org.
  • Delete the Elementor template that I no longer use.

Maintenance, WP-CLI, and diagnosis with AI

  • Update all plugins that have updates available and take a snapshot before each one.
  • Run wp cache flush to clear the object cache.
  • Are there errors in the log?Check the latest PHP errors and tell me if there is anything concerning.
  • The site shows a fatal error,can you look at what is happening and fix it?

Navigation and theme customization

  • Create an FSE navigation menu with links to Home, Blog, Store, and Contact.
  • Change the site logo to this image I just uploaded.
  • Read all modifications of the active theme and tell me what can be customized.

More than 300 MCP tools to manage WordPress and WooCommerce with AI

The plugin exposes to AI a complete set of tools that cover all areas of managing a professional WordPress site with WooCommerce. It is not a toy or a demo: it is a work tool designed for day-to-day use.

Content and taxonomies

  • Create, read, update, and delete content in any type of entry (posts, pages, custom CPTs).
  • Advanced search by text, category, custom taxonomy, meta field, date range, or any combination.
  • Full Gutenberg support: content is created with the correct block markup, not as plain HTML.
  • Taxonomy management: create, edit, and delete categories, tags, and custom taxonomies.
  • Media management: upload images from URL, assign featured images, list and delete files from the library.
  • Content auditing: detects which posts have not been updated for months to plan reviews.
  • Link analysis: extracts all links from your articles, detects broken ones, and suggests internal linking opportunities.

Translation with AI — Smart AI Translate (new in 2.6)

Full integration with Smart AI Translate that allows AI to manage all translation operations of the site directly from the conversation.

  • Site translation statistics: coverage by language, pending, obsolete, and completed entries.
  • Status by entry: check if an entry has updated or outdated translation for each language.
  • Direct translation: translates entries, taxonomy terms, and options using the AI provider configured in the plugin.
  • Flow "assistant as translator": AI can translate content and save it directly without going through the plugin provider.
  • Asynchronous queues: enqueue translations of individual entries, taxonomies, options, or the entire site via Action Scheduler.
  • Language Management: list configured and available languages. Remove translations from a language or from the entire site.

Page Builders — Elementor, Beaver Builder, WPBakery (new in 2.6)

Full support for the major page builders on the market. The AI can inspect, modify, and export layouts from any compatible builder.

  • Multi-builder detection: automatically detects which builders are active and how many pages each one uses.
  • Element tree: inspects the complete hierarchical structure of any page for Elementor (sections > columns > widgets), Beaver Builder (rows > groups > modules), and WPBakery (nested shortcodes).
  • Element editing: updates the settings of any widget or node by ID directly from the conversation.
  • Global colors and typography for Elementor: reads and updates the global color palette and global typography with its CSS variables.
  • Exporting and importing layouts: exports the layout of a page as portable JSON and mimics it on another page.
  • Layout comparison: compares layouts between two pages or revisions to see what has changed.
  • Builders health check: detects orphaned meta, corrupted data, mixed builder usage, and unbalanced shortcodes.
  • Elementor Pro: detects modules and capabilities of Elementor Pro, theme builder conditions, and dynamic tags.

MCM Inspector — Visual capture of design changes (new in 2.6)

Frontend tool that allows capturing design change intentions directly on the site. Select an element, describe what you want to change, and the Inspector creates a task that the AI can execute.

  • Selection overlay: hover highlighting of elements, automatic CSS and XPath selector generation, capturing computed styles.
  • Task panel: management of all captured design tasks with statistics, filters, and priorities.
  • Conflict prevention: automatically disables when Elementor, Beaver Builder, WPBakery, or the Customizer are in editing mode.

Integrated SEO with automatic plugin detection

  • Reading and writing SEO meta with automatic detection of the active plugin: Yoast SEO, Rank Math, AIOSEO, The SEO Framework, SiteSEO, Slim SEO, Squirrly SEO, and SureRank.
  • Titles, descriptions, keywords, robots, canonical and editable Open Graph fields from the AI.
  • Redirect management (301, 302, 307, 410) compatible with Rank Math, Redirection, and Yoast Premium.

Complete WooCommerce: the most advanced MCP plugin for stores

  • Products: create, edit, delete, search by category, SKU, price, stock, type, sale status. Complete variation management.
  • Orders: list, view complete details (lines, addresses, coupons, notes), change status, add notes, create refunds, and send payment links.
  • Customers: search by name or email, view complete profile with LTV, AOV, last orders, and most purchased products.
  • Coupons: create and edit coupons with all options (type, amount, expiration, limits, restrictions by product or category).
  • Sales reports: gross sales, net sales, orders, average ticket, items sold, refunds, taxes, and discounts by period.
  • Top sellers: most sold products by quantity and revenue in any period.
  • Inventory: complete report with low stock, out of stock, and overall summary.
  • Subscriptions: compatible with WooCommerce Subscriptions, YITH, and SUMO. MRR and ARR statistics.
  • Settings: shipping zones, payment gateways, tax rates, transactional emails, and +80 store options.

Users and comments

  • User management: list, create, edit, delete with content reassignment, view details with custom meta. Automatic discovery of existing meta fields.
  • Comment moderation: list, approve, reject, mark as spam, reply. Filters by post, status, author, or date.

Performance Profiler: complete overview of your site

Analyzes the performance of any page on your site with a profiler that collects 8 types of data simultaneously: SQL queries, assets, hooks, page summary, transients, HTTP calls, DOM analysis, and page builder detection.

  • Automatic profiling of any public page via internal HTTP request with token-based security.
  • Manual profiling for authenticated pages: cart, checkout, my account. Activated via secure cookie.
  • Performance comparison between multiple pages side by side.
  • Advanced SQL analysis: slow queries (>50ms), duplicate detection, N+1 patterns, grouping by component and table.
  • Page builder detection: Elementor, Divi, WPBakery, Beaver Builder, Bricks, Oxygen, Gutenberg.
  • Performance score 0-100 with grades from A+ to F, weighted in 10 categories.

Performance Optimizer: 20 optimizations with one click

Applies predefined performance optimizations that generate a clean and manageable mu-plugin. Each optimization has a risk level and can be undone individually.

  • 20 predefined optimizations in 5 categories: core bloat cleanup (emoji, dashicons, heartbeat, oEmbed, etc.), security, WooCommerce, HTTP, and content processing.
  • Risk level per optimization (none/low/medium) with warnings for user confirmation.
  • Individual or total rollback: undo a specific optimization or all at once.
  • Conditional loading of assets: dequeue, defer, or conditionally load scripts and styles by page type.
  • automatically generated mu-plugin with individual markers for granular management.

Database cleanup

Clean your WordPress database without the need for additional plugins. Default preview mode so you always see what will be deleted before executing.

  • 10 cleanup actions: old revisions, orphaned postmeta, orphaned commentmeta, spam comments, comments in trash, posts in trash, expired transients, orphaned autoloaded options, optimize tables, and autoload analysis.
  • Default dry_run mode: always preview changes before executing.
  • Configurable revision retention: choose how many revisions to keep per post (default 5).
  • Batch deletion (1000 rows per batch) to avoid timeouts on large WooCommerce databases.

Security: auditing and cleaning hacked sites

A complete set of diagnostic and remediation tools for when your site has been compromised. All diagnostic tools are 100% read-only, and cleanup tools require explicit administrator confirmation.

  • Unified security audit: evaluation with a weighted score of 0-100 in 6 categories.
  • Core integrity: verifies each WordPress file against the official checksums from wordpress.org.
  • Malware scan in wp-content/: detects eval/base64 patterns, backdoors, PHP in uploads.
  • Database injection scan: scripts, hidden iframes, pharmaceutical spam, fraudulent administrators.
  • Plugin verification against the official WordPress.org API to detect modifications.
  • Analysis of .htaccess: detects malicious redirects, SEO cloaking, auto_prepend injections.
  • Core cleanup: replaces all files with clean versions from wordpress.org and removes injected files.
  • Regeneration of salts: regenerates the 8 security salts in wp-config.php and audits user_roles.
  • Cleanup report: generates a complete report as a private draft in WordPress.
  • Automatic snapshot created by the Time Machine before any destructive operation.

Security Suite: 23 hardening measures managed by AI

A complete security hardening system for WordPress fully managed by AI. 23 security measures organized into three risk levels: SAFE (applied directly), CAUTION (the AI explains the risks before applying), and CRITICAL (require backup confirmation).

  • Security audit with a score of 0-100 and grades from A+ to F: evaluates 20 scored security measures and generates a report with missing measures and instructions for applying them.
  • Batch application of SAFE measures: applies all low-risk measures at once with optional exclusions.
  • Progressive brute force protection: automatic blocking by hashed IP with SHA-256: 5 failures → 15 min, 10 failures → 1 hour, 20 failures → 24 hours.
  • Session timeout for inactivity: configurable times by role (30 min for administrators, 60 min for editors by default).
  • Custom login URL with emergency recovery via transient or mcm-emergency-login.txt file.
  • XML-RPC protection with 3 modes: selective, full blocking (.htaccess deny), and total deactivation.
  • HTTP security headers: basic mode (X-Content-Type-Options, X-Frame-Options, Referrer-Policy, Permissions-Policy) and full mode with HSTS and CSP.
  • Database prefix change with SQL transactions (COMMIT/ROLLBACK) and recovery from partial failures.
  • REST API protection: blocks unauthenticated access to /wp/v2/users. Whitelist for MCP, WooCommerce, Jetpack, and Site Health.
  • Weak password audit: verifies administrators, editors, and authors against the 50 most common passwords.
  • File permissions audit: verifies wp-config.php (440), directories (755), and key files (644). The fix mode automatically applies recommended permissions.
  • Forced logout: logs out all active sessions or by specific role. Preserves the OAuth connection of MCP.
  • Emergency access to login: temporarily restores /wp-login.php when you have an active custom URL and cannot access.

Roles and Capabilities Manager

A complete system for managing WordPress roles and capabilities directly from the AI, with advanced security protections that prevent accidental errors and privilege escalations.

  • Complete CRUD for roles: list, create, modify, and delete WordPress roles. Create roles from scratch or by cloning existing roles with clone_from.
  • Capabilities Catalog: explore ~45 core WordPress capabilities, ~12 from WooCommerce, 3 from MCM, and dynamic capabilities from third-party plugins.
  • Role Comparison: side-by-side matrix showing common and unique capabilities among multiple roles.
  • Role Assignment: assign roles to users by ID, login, or email with built-in security measures.
  • User Capability Audit: comprehensive report of any user's effective capabilities with warnings for dangerous permissions.
  • 32 dangerous capabilities blocked: classified into 3 risk levels (CRITICAL, HIGH, MULTISITE). Administrators can enable them individually from the Roles tab in settings.
  • Single Admin Protection: always active, the site can never be left without at least one administrator.
  • Privilege Escalation Prevention: capabilities cannot be granted that one does not possess.
  • Protected Roles: core WordPress and WooCommerce roles cannot be deleted. The Administrator role is unmodifiable.

Human Confirmation System (Anti Prompt-Injection)

architectural defense against indirect prompt injection attacks. More than 30 high-risk operations require out-of-band human confirmation before execution.

  • Out-of-Band Confirmation: high-risk operations generate an independent confirmation link that the administrator must approve before execution.
  • More than 30 protected operations: user management, roles, option changes, database operations, cache/core cleanup, snapshot restoration/deletion, installing plugins/themes, writing/replacing files.
  • Independent confirmation page: card-like visual interface (similar to OAuth) accessible via REST endpoint, with no dependency on wp-admin.
  • HMAC Integrity: confirmation parameters are verified with hash_hmac(SHA-256) to prevent database tampering.
  • Atomic Confirmation: atomic state transitions (pending → confirmed → executed) that prevent race conditions and double execution.
  • Non-configurable operations list: the list of operations requiring confirmation is hardcoded in the plugin and cannot be disabled.
  • Automatic Cleanup: Action Scheduler every 12 hours removes expired pending confirmations.

Maintenance, DevOps, and WP-CLI

  • Plugin Management: list all (active, inactive, paused), activate, deactivate, install from WordPress.org or ZIP URL.
  • Theme Installation: install and activate themes from WordPress.org or ZIP URL with a prior security snapshot.
  • WP-CLI Bridge: run authorized WP-CLI commands with granular permission system, block list, and injection protection.
  • Secure Updates: view available updates and execute them with prior automatic snapshots (Time Machine).
  • Time Machine: snapshot system that allows reverting to the previous version of any plugin or theme.
  • File Management: read and edit site files (themes, plugins, wp-config.php, .htaccess) with automatic backup.
  • Debug and Logs: enable/disable debug mode and read PHP errors on the spot.
  • Cron: list, execute, and delete scheduled events.
  • Cache: clear object cache, transients, and WooCommerce transients.
  • SQL Queries: execute read-only SELECT queries (with sensitive column filtering).
  • System Info: complete environment information equivalent to WooCommerce's System Status.
  • Options Management: read, modify, and delete WordPress and WooCommerce options from an expanded secure list (+57 WP, +80 WC).
  • Classic Menus and FSE: create, edit, delete, and assign menus to theme locations. Complete management of FSE navigations with blocks.
  • Theme Customization: read and modify theme mods (logo, colors, background, header).

AI Image Generation

  • Google Gemini and Image: generate images using AI and save them in the Media Library.
  • 10 aspect ratios, 3 sizes (1K/2K/4K), PNG/JPEG output.
  • Assignment as featured image and insertion into content.
  • Image Editing: modify existing images with prompts (change text, colors, elements).

WordPress Code Guidelines

  • 15 contexts: plugin, block, theme, WooCommerce, REST API, security, performance, WP-CLI, and more.
  • 3-level Fallback: fork repo → upstream repo → offline guidelines.
  • Automatic Instruction: the MCP server instructs the AI to consult the guidelines before writing code.

Security: the most important aspect of the MCP plugin

A plugin with these capabilities needs to take security very seriously. Every aspect has been designed with the goal of protecting your WordPress site:

  • OAuth Authentication: the connection between the AI and your site is made using secure OAuth tokens. Compatible with WAF and nginx proxies.
  • Automatic Backups: every file modification creates a backup of the original.
  • Time Machine: complete ZIP snapshot before each update, installation, or security cleanup for instant rollback.
  • Read-only SQL: the AI can query the database but cannot execute INSERT, UPDATE, DELETE, or DROP.
  • Sensitive Data Filtering: passwords, tokens, and sensitive data are automatically filtered.
  • Options Whitelist: only options from the controlled list can be read and modified.
  • Protected WP-CLI: 16 dangerous commands blocked by default, granular permissions, escapeshellarg(), metacharacter blocking, and timeout.
  • Emergency Sentinel: independent mu-plugin that works even if WordPress crashes, allowing for diagnosis and repair.
  • 100% Read-only Diagnosis: all security audit tools are read-only. Cleanup tools require explicit confirmation.
  • Security Suite with 3 risk levels: each hardening measure is classified as SAFE, CAUTION, or CRITICAL.
  • Out-of-Band Human Confirmation: more than 30 high-risk operations require explicit approval from the administrator via an independent confirmation link. Architectural protection against indirect prompt injection.
  • HMAC Integrity in Confirmations: the parameters of each confirmation are verified with hash_hmac(SHA-256, AUTH_KEY) to prevent tampering.
  • 32 dangerous capabilities blocked by default: privilege escalation prevention, single admin protection, and unmodifiable core roles.

Use Cases: who is this AI plugin for WordPress?

For the owner of a WooCommerce store

Check your sales, manage orders, create coupons, review inventory, and analyze your customers without navigating the WordPress dashboard. Request sales reports, customer analysis with LTV and AOV, subscription statistics with MRR, and create recovery coupons, all by talking to your AI assistant.

For the content creator or blogger

Create and publish posts by talking to the AI. Request content audits, broken link detection, massive SEO optimization, internal linking opportunities, and AI image generation for your articles. Like having an editor and an SEO specialist 24/7.

For the WordPress developer or freelancer

Update plugins with automatic rollback, diagnose errors with logs and debug, install plugins and themes from the conversation, run WP-CLI, manage files with backup, and query the database. Profile the performance of any page, apply optimizations safely, and clean the database. Harden site security with 23 automated measures, audit file permissions, and protect login against brute force. Manage user roles and capabilities with advanced protections against privilege escalation. Inspect and modify layouts of Elementor, Beaver Builder, or WPBakery directly from the conversation. The AI follows official WordPress guidelines when writing code. All without SSH or hosting panel.

For the WordPress maintenance agency

Includes a complete maintenance runbook. The AI can consistently, document, and provide detailed reports ready to send to clients for the maintenance of your clients' sites. Security audits with scores from A+ to F, performance analysis with scoring, database cleaning, hardening with Security Suite, and optimization: what used to take 30-60 minutes per site is now a conversation of minutes. And with the human confirmation system, critical operations always require your explicit approval.

For emergencies: hacked site

When a site has been compromised, time is critical. With MCP Content Manager Premium, the AI can perform a complete diagnosis in minutes: verify core integrity, scan for malware in files and database, review .htaccess, classify suspicious directories. And then, clean the core, clear contaminated caches, regenerate security salts, and generate a professional report of everything found and corrected.

Compatible with major MCP clients

MCP Content Manager Premium works with any client that supports the MCP protocol (Model Context Protocol). This includes:

    ¡No te pierdas las novedades!

    ¡No hacemos spam! y te puedes dar de baja cuando quieras

    Reviews

    There are no reviews yet.

    Only logged in customers who have purchased this product may leave a review.

    Related products