WP Activity Log



Keep an activity log of everything that happens on your WordPress sites and multisite networks with the WP Activity Log plugin to:

  • Ensure user productivity
  • Improve user accountability
  • Ease troubleshooting
  • Know exactly what all your users are doing
  • Better manage & organize your WordPress site & users
  • Easily spot suspicious behavior before there are security problems.

WP Activity Log is the most comprehensive real time user activity and monitoring log plugin. It helps thousands of WordPress administrators and security professionals keep an eye on what is happening on their websites. It is also the most highly rated WordPress activity log plugin and have been featured on popular sites such as GoDaddy, Kinsta and WPBeginner.

Note: The WordPress activity log is FREE. Features such as reports, email notifications, SMS alerts, search and many others are available in the Premium Edition.

Maintained & Supported by WP White Security

WP White Security builds high-quality niche WordPress security & management plugins such as Password Policy Manager for WordPress, a plugin with which you can ensure all your users use strong passwords.

Browse our list of WordPress plugins that can help you better manage and improve the security of your WordPress websites and users.

WordPress Changes & Details the Plugin Keeps a Log Of

As a comprehensive & complete WordPress activity log solution WP Activity Log does not just tell you that a post, a user profile, or an object was updated. It tells you exactly what was changed within the post, the user profile, or the object.

Below is a summary of the changes that the plugin can keep a record of:

  • Post, Page and Custom Post Type changes such as status, content changes, title, URL, custom field & other metadata changes

  • Tags and Categories changes such as creating, modifying or deleting them, and adding or removing them from posts

  • Widgets and Menus changes such as creating, modifying or deleting them

  • User changes such as user created or registered, deleted or added to a site on multisite network

  • User profile changes such as password, email, display name and role changes

  • User activity such as login, logout, failed logins and terminating other sessions

  • WordPress core and settings changes such as installed updates, permalinks, default role, URL and other site-wide changes

  • WordPress multisite network changes such as adding, deleting or archiving sites, adding or removing users from sites etc (activity logs for multisite networks).

  • Plugins and Themes changes such as installing, activating, deactivating, uninstalling and updating them

  • WordPress database changes such as when a plugin adds or removes a table

  • Changes on WooCommerce Stores & Products, Yoast SEO, Advanced Custom Fields (ACF), MainWP and other popular WordPress plugins.

  • WordPress site file changes such as new files are added, or existing ones are modified or deleted.

For every event that the plugin keeps a log of it also reports the:

  • Date & time (and milliseconds) of when it happened,
  • User & role of the user who did the change,
  • Source IP address from where the change happened.

Refer to WordPress activity log event IDs for a complete list of all the changes WP Activity Log can keep a record of.

Extend the Functionality of WP Activity Log

Upgrade to WP Activity Log Premium to:

  • See who is logged,
  • See what everyone is doing in real time,
  • Log off any user with just a click,
  • Generate HTML and CSV reports,
  • Export the activity log in CSV (ideal for integrations),
  • Get notified via email of important changes,
  • Get instant SMS message notifications of critical site changes,
  • Search the activity log using text-based searches,
  • Use built-in filters to fine tune the searches,
  • Store activity log in an external database to improve security,
  • Mirror the WordPress activity logs to Slack, Papertrail, Syslog and other central log management and collaboration solutions,
  • Configure archiving and mirroring of logs.

Refer to the features page for more detailed information on the plugin’s features.

Free and Premium Support

Support for WP Activity Log is free on the WordPress support forums.

Premium world-class support is available via email to all WP Activity Log Premium customers.

Note: paid customers support is given priority and is provided via one-to-one email and over the phone. Upgrade to Premium to benefit from priority support.

Other Noteworthy Features

Apart from the activity logs and the already mentioned features, WP Activity Log has a number of non-logging specific features that make it a complete WordPress logging solution, such as:

Refer to the WordPress activity log plugin datasheet for a complete list of features.

As Featured On:

WP Activity Log in your language!

We need help translating the plugin and the activity log events. Please visit the WordPress Translate Project to translate the plugin. Drop us an email on support@wpwhitesecurity.com to get mentioned in the list of translators below.

WP Activity Log extensions for third party plugins

  • WP Activity Log for WooCommerce: When you install this extension you keep a log of changes your team does to the WooCommerce store settings, orders, products, coupons _ much more.
  • WP Activity Log for WPForms: When you install this extension you keep a log of changes your team does in the WPForms plugin, forms, form files, entries (leads) and more.
  • Activity Log for MainWP: With this MainWP extension you keep a log of the MainWP network changes and can see the activity logs of all child sites from one central location – the MainWP dashboard.
  • WP Activity Log for bbPress: With this extension you can keep a log of changes in bbPress forums, topics, bbPress settings and more.

Related Links and Documentation

Install WP Activity Log from within WordPress

  1. Visit ‘Plugins > Add New’
  2. Search for ‘WP Activity Log’
  3. Install and activate the WP Activity Log plugin
  4. Allow or skip diagnostic tracking

Install WP Activity Log manually

  1. Upload the wp-security-audit-log directory to the /wp-content/plugins/ directory
  2. Activate the WP Activity Log plugin from the ‘Plugins’ menu in WordPress
  3. Allow or skip diagnostic tracking


  • The WordPress activity logs from where the site administrator can see all the user and site changes.
  • See who is logged in to your WordPress and manage users sessions with Users Sessions Management
  • The plugin settings from where site administrator can configure generic plugin settings such as reverse proxy support, who can manage the plugin etc.
  • The WordPress audit trail settings from where you can configure automatic pruning of alerts, which timestamp should be used, how many 404 requests should be logged and more.
  • Configuring WordPress email and SMS alerts with the Email & SMS Notifications module
  • Search in the WordPress activity log with the use filters to fine tune the search results.
  • The Enable/Disable events section from where Administrators can disable or enable activity log events.
  • The Log Viewer of a Super Admin in a WordPress multisite network installation with the Site selection drop down menu.
  • WP Activity Log is integrated with the built-in revision system of WordPress, thus allowing you to see what content changes users make on your WordPress posts, pages and custom post types. For more information read Keep Record of All WordPress Content Changes
  • Mirror the WordPress activity log to an external solution such as Syslog or Papertrail to centralize logging, ensure logs are always available and cannot be tampered with in the unfortunate case of a hack attack.

Συχνές Ερωτήσεις

Support and Documentation

Please refer to our support pages for all the technical information and product documentation.


17 Σεπτεμβρίου 2020
I volunteer at several non-profits and maintain their websites using WordPress. One of them is the local Chamber of Commerce. Volunteers help, they are to "paid" people (editors) and hopefully 150 or so Investors. If something goes wrong I want to be able to figure out quickly who was logged in and what they were doing.
15 Σεπτεμβρίου 2020
I'm the admin and it says I dont have permission to view my log? Just when I needed it the most.
12 Σεπτεμβρίου 2020
The plugin is great (even the free version, which I have) for peace of mind. However, what is even better is the support! The CEO at WP White Security helped me when there was an issue with the plugin not showing up (although it was still logging everything). Absolutely fantastic support, and I only have the free version.
3 Σεπτεμβρίου 2020
Does a splendid job. We just use it to track who updates plug-ins that shouldn't be. 🙂 Support was very responsive when we had an issue updating on 4.1, first response resolved it too.
Ανάγνωση όλων των 289 κριτικών

Συνεισφέροντες & Προγραμματιστές

“WP Activity Log” είναι λογισμικό ανοιχτού κώδικα. Οι παρακάτω έχουν συνεισφέρει στη δημιουργία του.


“WP Activity Log” έχει μεταφραστεί σε 4 γλώσσες. Thank you to the translators for their contributions.

Μεταφράστε το “WP Activity Log” στην γλώσσα σας.

Interested in development?

Περιηγηθείτε στον κώδικα , ανατρέξτε στο αποθετήριο SVN ή εγγραφείτε στο αρχείο καταγραφής αλλαγών μέσω RSS .

Σύνοψη αλλαγών (2020-08-14)

  • Improvement

  • Bug fixes

    • The orders details in WooCommerce were not being added to the order (Support ticket).
    • An empty space was added to the top of the WordPress admin menu.
    • Third party plugins extensions notification not showing in the activity log viewer.
    • Thurd party plugins extension help text was shown on the wrong pages.

4.1.3 (2020-08-11)

Release notes: WP Activity Log 4.1.3: New extension for WooCommerce & other updates


    • Only update from 4.1.2 to 4.1.3. If you are using an older version, first update to 4.1.2 before updating to 4.1.3.
  • New features

    • The all new WP Activity Log for WooCommerce extension (needed to keep a log of changes on WooCommerce store, products, orders & much more).
    • New plugin and activity log privileges that allow super admins on a multisite network to restrict activity log access to site admins and other super admins.
    • Coverage for changes done to relationship custom fields created with ACF.
  • New activity log events

    • ID 2131: Added relationships in a custom field.
    • ID 2132: Removed relationships from a custom field.
    • ID 9101: Created new product tag in WooCommerce.
    • ID 9102: Deleted a product tag in WooCommerce.
    • ID 9103: Renamed a product tag in WooCommerce.
    • ID 9104: Changed the slug of a product tag in WooCommerce.

Refer to the complete list of activity log event IDs for more detailed information.

  • Improvements

    • Improved the plugin’s coverage of WooCommerce stores, products, orders etc by adding new events, and updating the current sensor.
    • Plugin now uses the default WordPress options table to store settings (performance enhancement).
    • Refactored all settings in the database so they all use yes/no values.
    • Restricted the plugin’s and activity log settings to the network dashboard only on a multisite network.
    • Change in wp_wsal_sessions table structure: now plugin uses session ID as unique identifier in table.
    • Plugin keeps the ID of the sites a user is logged in to on a multisite network.
    • Removed the Import/Export plugin settings functionality (a much better utility will be designed and launched as a replacement).
    • File changes detected by the Website File Changes Monitor plugin are now reported in the daily summary email.
    • Log files working directory in uploads directory renamed to wp-activity-log.
    • If no path is specified for the log files working directory, the default path is used.
    • Improved activity log privileges – on multisite super admin can restrict site admins from seeing their own site’s activity logs.
    • WooCommerce front end sensor is automatically enabled if admin enables events to track purchases of non-logged in users.
    • Improved the text of the third party plugins extensions notifications.
    • Updated the format of event IDs 9070 and 4020 to matches the standard template.
    • Coverage of WooCommerce coupon changes has been improved andplugin can now keep a log of usage restriction changes in coupons.
    • IP address in list of logged in users is now linked to WhatIsMyIPAddress.com.
    • Added a message for when no sessions are shown in the Logged In users section.
    • Minor changes in the plugin’s settings pages.
    • Updated some notifications used by the third party plugins extensions.
    • Third party plugins extensions are now automatically activated on multsite network when installed.
    • Removed all code that was used for file scanning. Now plugin is fully integrated with Website File Changes Monitor.
  • Bug fixes

    • Extensions notifications were wrongly shown to sub sites admins on multisite.
    • Event 1002 (failed user login) was wrongly reported when a user session is blocked.
    • When the setting Delete data on uninstall was enabled the plugin was not deleting all the data from the database.
    • Event ID 1002 (failed user login) incorrectly links to log file.
    • Plugin does not send logs to Activity Log for MainWP extension when child site uses a non-default admin URL.
    • Error when loading user session tokens from usermeta table in some cases.
    • Users sessions table was moved to external database when activity log is stored in an external database.
    • Plugin was reporting event ID 1000 (login) when user changes own password in user profile page.
    • Plugin’s log files working directory was hardcoded (uploads directory).
    • When super admins changed the plugin’s settings on a child site, the settings were not applied globally.
    • Users who are allowed to view the activity log can also see who is logged in.
    • The old plugin name was shown on the daily summary email template.
    • Plugin created working directory in wrong location when site address is different than WordPress address.
    • Setup wizard shows all the extensions for third party plugins instead of those for the installed plugins.
    • Wrong anchor text “view post in editor” used for WooCommerce products.
    • Unknown object reported instead of actual Object in some of the WPForms activity log events.
    • Event ID 2080 not reported when the last item was removed from the site menu.
    • Plugin logo missing from license activation screen.
    • Website File Changes Monitor custom posts type changes were reported (these are ignored by default).

Refer to the complete plugin changelog for more detailed information about what was new, improved and fixed in previous versions of the WP Activity Log plugin.