WP Activity Log



Keep an activity log of everything that happens on your WordPress sites and multisite networks with the WP Activity Log plugin to:

  • Ensure user productivity
  • Improve user accountability
  • Ease troubleshooting
  • Know exactly what all your users are doing
  • Better manage & organize your WordPress site & users
  • Easily spot suspicious behavior before there are security problems.

WP Activity Log is the most comprehensive real time user activity and monitoring log plugin. It helps thousands of WordPress administrators and security professionals keep an eye on what is happening on their websites. It is also the most highly rated WordPress activity log plugin and have been featured on popular sites such as GoDaddy, Kinsta and WPBeginner.

Note: The WordPress activity log is FREE. Features such as reports, email notifications, SMS alerts, search and many others are available in the Premium Edition.

Maintained & Supported by WP White Security

WP White Security builds high-quality niche WordPress security & management plugins such as Password Policy Manager for WordPress, a plugin with which you can ensure all your users use strong passwords.

Browse our list of WordPress plugins that can help you better manage and improve the security of your WordPress websites and users.

WordPress Changes & Details the Plugin Keeps a Log Of

As a comprehensive & complete WordPress activity log solution WP Activity Log does not just tell you that a post, a user profile, or an object was updated. It tells you exactly what was changed within the post, the user profile, or the object.

Below is a summary of the changes that the plugin can keep a record of:

  • Post, Page and Custom Post Type changes such as status, content changes, title, URL, custom field & other metadata changes

  • Tags and Categories changes such as creating, modifying or deleting them, and adding or removing them from posts

  • Widgets and Menus changes such as creating, modifying or deleting them

  • User changes such as user created or registered, deleted or added to a site on multisite network

  • User profile changes such as password, email, display name and role changes

  • User activity such as login, logout, failed logins and terminating other sessions

  • WordPress core and settings changes such as installed updates, permalinks, default role, URL and other site-wide changes

  • WordPress multisite network changes such as adding, deleting or archiving sites, adding or removing users from sites etc (activity logs for multisite networks).

  • Plugins and Themes changes such as installing, activating, deactivating, uninstalling and updating them

  • WordPress database changes such as when a plugin adds or removes a table

  • Changes on WooCommerce Stores & Products, Yoast SEO, Advanced Custom Fields (ACF), MainWP and other popular WordPress plugins.

  • WordPress site file changes such as new files are added, or existing ones are modified or deleted.

For every event that the plugin keeps a log of it also reports the:

  • Date & time (and milliseconds) of when it happened,
  • User & role of the user who did the change,
  • Source IP address from where the change happened.

Refer to WordPress activity log event IDs for a complete list of all the changes WP Activity Log can keep a record of.

Extend the Functionality of WP Activity Log

Upgrade to WP Activity Log Premium to:

  • See who is logged,
  • See what everyone is doing in real time,
  • Log off any user with just a click,
  • Generate HTML and CSV reports,
  • Export the activity log in CSV (ideal for integrations),
  • Get notified via email of important changes,
  • Get instant SMS message notifications of critical site changes,
  • Search the activity log using text-based searches,
  • Use built-in filters to fine tune the searches,
  • Store activity log in an external database to improve security,
  • Mirror the WordPress activity logs to Slack, Papertrail, Syslog and other central log management and collaboration solutions,
  • Configure archiving and mirroring of logs.

Refer to the features page for more detailed information on the plugin’s features.

Free and Premium Support

Support for WP Activity Log is free on the WordPress support forums.

Premium world-class support is available via email to all WP Activity Log Premium customers.

Note: paid customers support is given priority and is provided via one-to-one email and over the phone. Upgrade to Premium to benefit from priority support.

Other Noteworthy Features

Apart from the activity logs and the already mentioned features, WP Activity Log has a number of non-logging specific features that make it a complete WordPress logging solution, such as:

Refer to the WordPress activity log plugin datasheet for a complete list of features.

As Featured On:

WP Activity Log in your language!

We need help translating the plugin and the activity log events. Please visit the WordPress Translate Project to translate the plugin. Drop us an email on support@wpwhitesecurity.com to get mentioned in the list of translators below.

WP Activity Log extensions for third party plugins

  • WP Activity Log for WooCommerce: When you install this extension you keep a log of changes your team does to the WooCommerce store settings, orders, products, coupons _ much more.
  • WP Activity Log for WPForms: When you install this extension you keep a log of changes your team does in the WPForms plugin, forms, form files, entries (leads) and more.
  • Activity Log for MainWP: With this MainWP extension you keep a log of the MainWP network changes and can see the activity logs of all child sites from one central location – the MainWP dashboard.
  • WP Activity Log for bbPress: With this extension you can keep a log of changes in bbPress forums, topics, bbPress settings and more.

Related Links and Documentation

Install WP Activity Log from within WordPress

  1. Visit ‘Plugins > Add New’
  2. Search for ‘WP Activity Log’
  3. Install and activate the WP Activity Log plugin
  4. Allow or skip diagnostic tracking

Install WP Activity Log manually

  1. Upload the wp-security-audit-log directory to the /wp-content/plugins/ directory
  2. Activate the WP Activity Log plugin from the ‘Plugins’ menu in WordPress
  3. Allow or skip diagnostic tracking


  • The WordPress activity logs from where the site administrator can see all the user and site changes.
  • See who is logged in to your WordPress and manage users sessions with Users Sessions Management
  • The plugin settings from where site administrator can configure generic plugin settings such as reverse proxy support, who can manage the plugin etc.
  • The WordPress audit trail settings from where you can configure automatic pruning of alerts, which timestamp should be used, how many 404 requests should be logged and more.
  • Configuring WordPress email and SMS alerts with the Email & SMS Notifications module
  • Search in the WordPress activity log with the use filters to fine tune the search results.
  • The Enable/Disable events section from where Administrators can disable or enable activity log events.
  • The Log Viewer of a Super Admin in a WordPress multisite network installation with the Site selection drop down menu.
  • WP Activity Log is integrated with the built-in revision system of WordPress, thus allowing you to see what content changes users make on your WordPress posts, pages and custom post types. For more information read Keep Record of All WordPress Content Changes
  • Mirror the WordPress activity log to an external solution such as Syslog or Papertrail to centralize logging, ensure logs are always available and cannot be tampered with in the unfortunate case of a hack attack.

Preguntas frecuentes

Support and Documentation

Please refer to our support pages for all the technical information and product documentation.


12 de agosto de 2020
It's a great to know such a good plugin to audit the activity log in our site. It is much needed to our site. Also, support is marvelous with quick fix with minimal interactions. Thanks to the team. Keep it going.
12 de agosto de 2020
Excellent plugin, awesome support even in free version. Thanks to the developers!
21 de julio de 2020
We subscribed to Pro plan and are highly satisfied with the plugin. It does all monitoring we need in order to have reports on any website event. The support is excellent ! The team answers very quickly and always here to help customers. Highly recommended !
Leer todas las 281 reseñas

Colaboradores y desarrolladores

Este software es de código abierto. Las siguientes personas han contribuido a este plugin.


"WP Activity Log" ha sido traducido a 4 idiomas locales. Gracias a los traductores por sus contribuciones.

Traduce "WP Activity Log" a tu idioma.

¿Interesado en el desarrollo?

Revisa el código, echa un vistazo al repositorio SVN o suscríbete al registro de desarrollo por RSS.

Registro de cambios

4.1.3 (2020-08-11)

Release notes: WP Activity Log 4.1.3: New extension for WooCommerce & other updates


    • Only update from 4.1.2 to 4.1.3. If you are using an older version, first update to 4.1.2 before updating to 4.1.3.
  • New features

    • The all new WP Activity Log for WooCommerce extension (needed to keep a log of changes on WooCommerce store, products, orders & much more).
    • New plugin and activity log privileges that allow super admins on a multisite network to restrict activity log access to site admins and other super admins.
    • Coverage for changes done to relationship custom fields created with ACF.
  • New activity log events

    • ID 2131: Added relationships in a custom field.
    • ID 2132: Removed relationships from a custom field.
    • ID 9101: Created new product tag in WooCommerce.
    • ID 9102: Deleted a product tag in WooCommerce.
    • ID 9103: Renamed a product tag in WooCommerce.
    • ID 9104: Changed the slug of a product tag in WooCommerce.

Refer to the complete list of activity log event IDs for more detailed information.

  • Mejoras

    • Improved the plugin’s coverage of WooCommerce stores, products, orders etc by adding new events, and updating the current sensor.
    • Plugin now uses the default WordPress options table to store settings (performance enhancement).
    • Refactored all settings in the database so they all use yes/no values.
    • Restricted the plugin’s and activity log settings to the network dashboard only on a multisite network.
    • Change in wp_wsal_sessions table structure: now plugin uses session ID as unique identifier in table.
    • Plugin keeps the ID of the sites a user is logged in to on a multisite network.
    • Removed the Import/Export plugin settings functionality (a much better utility will be designed and launched as a replacement).
    • File changes detected by the Website File Changes Monitor plugin are now reported in the daily summary email.
    • Log files working directory in uploads directory renamed to wp-activity-log.
    • If no path is specified for the log files working directory, the default path is used.
    • Improved activity log privileges – on multisite super admin can restrict site admins from seeing their own site’s activity logs.
    • WooCommerce front end sensor is automatically enabled if admin enables events to track purchases of non-logged in users.
    • Improved the text of the third party plugins extensions notifications.
    • Updated the format of event IDs 9070 and 4020 to matches the standard template.
    • Coverage of WooCommerce coupon changes has been improved andplugin can now keep a log of usage restriction changes in coupons.
    • IP address in list of logged in users is now linked to WhatIsMyIPAddress.com.
    • Added a message for when no sessions are shown in the Logged In users section.
    • Minor changes in the plugin’s settings pages.
    • Updated some notifications used by the third party plugins extensions.
    • Third party plugins extensions are now automatically activated on multsite network when installed.
    • Removed all code that was used for file scanning. Now plugin is fully integrated with Website File Changes Monitor.
  • Bug fixes

    • Extensions notifications were wrongly shown to sub sites admins on multisite.
    • Event 1002 (failed user login) was wrongly reported when a user session is blocked.
    • When the setting Delete data on uninstall was enabled the plugin was not deleting all the data from the database.
    • Event ID 1002 (failed user login) incorrectly links to log file.
    • Plugin does not send logs to Activity Log for MainWP extension when child site uses a non-default admin URL.
    • Error when loading user session tokens from usermeta table in some cases.
    • Users sessions table was moved to external database when activity log is stored in an external database.
    • Plugin was reporting event ID 1000 (login) when user changes own password in user profile page.
    • Plugin’s log files working directory was hardcoded (uploads directory).
    • When super admins changed the plugin’s settings on a child site, the settings were not applied globally.
    • Users who are allowed to view the activity log can also see who is logged in.
    • The old plugin name was shown on the daily summary email template.
    • Plugin created working directory in wrong location when site address is different than WordPress address.
    • Setup wizard shows all the extensions for third party plugins instead of those for the installed plugins.
    • Wrong anchor text “view post in editor” used for WooCommerce products.
    • Unknown object reported instead of actual Object in some of the WPForms activity log events.
    • Event ID 2080 not reported when the last item was removed from the site menu.
    • Plugin logo missing from license activation screen.
    • Website File Changes Monitor custom posts type changes were reported (these are ignored by default).

Refer to the complete plugin changelog for more detailed information about what was new, improved and fixed in previous versions of the WP Activity Log plugin.