Why Using a WordPress-Powered Shopping Cart is a Bad Idea

Written By:
Michael Harbone
Published On:
September 16th, 2019
Read Time:
5 Mins
Category:
Billing

WordPress is one of the most popular content management solutions (CMSs) in the world. In fact, WordPress now accounts for roughly 61 percent of CMS market share. Shopify, on the other hand, accounts for just 2.8 percent. (Keep in mind, many websites have no CMS.)

WordPress is the most popular CMS in the world.

So if you’re setting up an ecommerce store or already run one, WordPress may well be the go to choice for a CMS solution. WordPress is relatively easy to use and there is a huge support community. Further, there are tons of slick ecommerce themes available and with a bit of patience and effort, even just about anyone can set up a competent site in a few days.

So using a WordPress plugin shopping cart is also a natural and easy choice, right? Not so fast! While WordPress is a great CMS, there are some downsides to using a WordPress plugin shopping cart.

Also, keep in mind that just because you use WordPress as a CMS, you don’t have to use a WordPress plugin cart. You can use PayKickstart and many other non-plugin carts along side WordPress. Let’s take a look at why a WordPress plugin cart might be a bad idea, and also some better alternatives.

WordPress, and Especially Plugins, Present Security Risks

Cyber security is a huge issue right now. Indeed, cyber security has become one of the driving points of public policy for many governments. It’s that big of a deal. And how often do we hear about huge security breaches? Even big brands, like Target and Equifax, have been hit hard by security breaches.

Cyber security is a huge concern and plugins present their own risks.

WordPress has a bit of a poor reputation when it comes to cyber security. Some of this is unwarranted, however. WordPress is frequently targeted by hackers but that makes sense: it’s the most popular CMS. Likewise, Windows PCs are most frequently targeted by hackers because Windows is the most popular operating system.

However, you do have to take the security of your WordPress website very seriously. Some steps you can take:

Chose a secure hosting company
Use only trusted themes from respected developers
Set a strong, impossible to guess password
Limit login attempts
Restrict what IPs can login
Disable file editing
Enable two-factor identification
Make sure your website and plugins are up-to-date

I outlined a lot of steps. However, I’d like to focus on the last point. You need to make sure your website and especially your plugins are constantly up-to-date. These days, many hackers target WordPress plugins rather than the website itself. If hackers can crack a plugin, they may be able to create a backdoor into the thousands of websites.

If you’re using a WordPress plugin shopping cart, this means your cart itself could become a vulnerability. If the plugin development team is not meticulously following security issues, your cart could be hacked. It’s possible that sensitive consumer data could even be exposed.

If you use a WordPress plugin shopping cart, security responsibilities will ultimately fall onto your shoulders. You will need to keep a close eye and make sure that your cart is secure and up-to-date. On the other hand, if you use a Software-as-a-Service shopping cart, the provider will be in charge of the software’s security and making sure everything is up-to-date.

(However, when you use a SaaS, you still need to take certain security precautions. For example, you should choose a strong password and not share it with anyone.)

WordPress Plugins Can Slow Your Site Down

Plugins are quite infamous for slowing down site speeds. If you rely on a lot of plugins, the risks of poor website performance will only increase. More advanced and complex plugins can be especially troublesome.

WordPress plugins are useful, but use too many and they’ll slow your site down.

Unfortunately, running a secure checkout process can be resource intensive. Meanwhile, your WordPress plugin will be eating up resources on your servers. If a lot of people are trying to check out or are otherwise using your website, you could quickly overwhelm your hardware.

This is a big deal. 40 percent of customers will abandon your website if it takes more than 3 seconds to load! Even a one second delay can reduce conversions by 7 percent. So if your WordPress plugins are slowing your website down, you could be bleeding customers and sales!

On the other hand, when you use a Software-as-a-Service the provider will be utilizing their own server space. And if you select a top-notch SaaS provider, like PayKickstart, you can be confident that the software is being professionally coded and that ample server space is on hand.

Many WordPress Plugin Carts Are Feature-Limited

Running a WordPress plugin cart can take a lot of resources. And as we’ve seen, plugins create more security risks. Larger, complex plugins could be particularly vulnerable to being hacked. As a result of these factors and others, many WordPress plugin carts are feature limited.

Yes, they’ll let customers check out and make a payment, but many plugins don’t feature advanced tools, data, and other features. At PayKickstart, we’ve found that advanced features can greatly increase sales.

For example, one-click upsells have helped our customers more than double their customer revenues. We’ve also found that our cart recovery emails can reduce abandonment rates. Meanwhile, order bumps can increase average transaction values by 30 percent.

Order bumps at work!

As a SaaS provider, we can provide these tools to you right out of the box. However, many WordPress plugins won’t feature such advanced tools. And even if they do, you could suffer performance issues as your server hardware is overwhelmed.

Take-Away: SaaS is Almost Always Better

There’s a reason we developed PayKickstart as a SaaS shopping cart rather than a WordPress plugin. We quickly realized that by doing so we would be able to offer a better performing, more secure, and more feature-rich shopping cart. And when it comes to increasing sales, all of these factors will have a big impact.

That’s why we recommend using a SaaS shopping cart, like PayKickstart.

Share this post:

Or copy link

Michael Harbone

Michael Harbone is an experienced copywriter, writing professionally since 2017. He has written for multiple digital marketing companies gaining the reputation for writing engaging, concise articles one which received an award from Upcity.

Cookie	Duration	Description
__cfruid	session	Cloudflare sets this cookie to identify trusted web traffic.
__stripe_mid	1 year	Stripe sets this cookie cookie to process payments.
__stripe_sid	30 minutes	Stripe sets this cookie cookie to process payments.
AWSALBCORS	7 days	This cookie is managed by Amazon Web Services and is used for load balancing.
cookielawinfo-checbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
csrftoken	1 year	This cookie is associated with Django web development platform for python. Used to help protect the website against Cross-Site Request Forgery attacks
enforce_policy	1 year	PayPal sets this cookie for secure transactions.
laravel_session	1 hour	laravel uses laravel_session to identify a session instance for a user, this can be changed
PHPSESSID	session	This cookie is native to PHP applications. The cookie is used to store and identify a users' unique session ID for the purpose of managing user session on the website. The cookie is a session cookies and is deleted when all the browser windows are closed.
ts	3 years	PayPal sets this cookie to enable secure transactions through PayPal.
ts_c	3 years	PayPal sets this cookie to make safe payments through PayPal.
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
XSRF-TOKEN	2 hours	This cookie is set by Wix and is used for security purposes.

Cookie	Duration	Description
__cf_bm	30 minutes	This cookie, set by Cloudflare, is used to support Cloudflare Bot Management.
nsid	session	This cookie is set by the provider PayPal to enable the PayPal payment service in the website.
tsrce	3 days	PayPal sets this cookie to enable the PayPal payment service in the website.
x-pp-s	session	PayPal sets this cookie to process payments on the site.

Cookie	Duration	Description
_calendly_session	21 days	Calendly, a Meeting Schedulers, sets this cookie to allow the meeting scheduler to function within the website and to add events into the visitor’s calendar.
_gat_UA-44547153-6	1 minute	A variation of the _gat cookie set by Google Analytics and Google Tag Manager to allow website owners to track visitor behaviour and measure site performance. The pattern element in the name contains the unique identity number of the account or website it relates to.
AWSALB	7 days	AWSALB is an application load balancer cookie set by Amazon Web Services to map the session to the target.
l7_az	30 minutes	This cookie is necessary for the PayPal login-function on the website.

Cookie	Duration	Description
_dc_gtm_UA-65222323-1	1 minute	This is a Google Tag Manager cookie that is used to control the loading of a Google Analytics script tag, to track the performance of ad campaigns.
_ga	2 years	The _ga cookie, installed by Google Analytics, calculates visitor, session and campaign data and also keeps track of site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
_gat_user	1 minute	Google Analytics sets this cookie to throttle request rate.
_gcl_au	3 months	Provided by Google Tag Manager to experiment advertisement efficiency of websites using their services.
_gid	1 day	Installed by Google Analytics, _gid cookie stores information on how visitors use a website, while also creating an analytics report of the website's performance. Some of the data that are collected include the number of visitors, their source, and the pages they visit anonymously.
_session_id	14 days	Cookie set by G2 to store the visitor’s navigation by recording the landing pages. This allows the website to present products and indicate the efficiency of the website.
CONSENT	2 years	YouTube sets this cookie via embedded youtube-videos and registers anonymous statistical data.
vuid	2 years	Vimeo installs this cookie to collect tracking information by setting a unique ID to embed videos to the website.

Cookie	Duration	Description
_fbp	3 months	This cookie is set by Facebook to display advertisements when either on Facebook or on a digital platform powered by Facebook advertising, after visiting the website.
fr	3 months	Facebook sets this cookie to show relevant advertisements to users by tracking user behaviour across the web, on sites that have Facebook pixel or Facebook social plugin.
IDE	1 year 24 days	Google DoubleClick IDE cookies are used to store information about how the user uses the website to present them with relevant ads and according to the user profile.
test_cookie	15 minutes	The test_cookie is set by doubleclick.net and is used to determine if the user's browser supports cookies.
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt.innertube::nextId	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.

Why Using a WordPress-Powered Shopping Cart is a Bad Idea

WordPress, and Especially Plugins, Present Security Risks

WordPress Plugins Can Slow Your Site Down

Many WordPress Plugin Carts Are Feature-Limited

Take-Away: SaaS is Almost Always Better

Share this post:

Michael Harbone

Subscription growth hack (by PayKickstart)

How to Choose the Right Subscription Management Software for Your Business

5 Ways to Improve Your Checkout Experience for Higher Conversion Rates

Comparisons

Cookie	Duration	Description
__tnp	1 year	No description
__tzp	session	No description
anonymous_user_id	68 years 18 days 3 hours 14 minutes	No description
cca_is_eu	1 year	No description available.
cookie_notice_accepted	1 year	No description available.
currentAccountId	past	No description
customerly_jwt	1 year	No description
LANG	9 hours	No description
m	2 years	No description available.
offerit_adtool_unique_285_88_1	1 day	No description
pk_vid	5 years	No description available.
prism_798510971	1 month	No description
referrer_user_id	14 days	No description available.
STATSESSID	session	No description
volume	never	No description available.
zapidentity	1 year	No description
zapsession	7 days	No description

Why Using a WordPress-Powered Shopping Cart is a Bad Idea

WordPress, and Especially Plugins, Present Security Risks

WordPress Plugins Can Slow Your Site Down

Many WordPress Plugin Carts Are Feature-Limited

Take-Away: SaaS is Almost Always Better

Share this post:

Michael Harbone

Subscription growth hack (by PayKickstart)

Want to keep reading other related articles?

How to Choose the Right Subscription Management Software for Your Business

5 Ways to Improve Your Checkout Experience for Higher Conversion Rates

Comparisons

Let’s Schedule Your 20 Minutes Discovery Call

On this call, we will: