Description
WP Activity Log is the most comprehensive activity log plugin for logging user and system changes.
Keep an activity log of everything that happens on your WordPress sites and multisite networks with the WP Activity Log plugin to:
- Ensure user productivity
- Improve user accountability
- Ease troubleshooting
- Know exactly what all your users are doing
- Better manage & organize your WordPress site & users
- Easily spot suspicious behavior before there are security problems.
WP Activity Log is the most comprehensive real-ime user activity and monitoring log plugin. It helps hundreds of thousands of WordPress administrators and security professionals keep an eye on what is happening on their websites and is the most highly-ated activity log plugin for WordPress.
Features | Get WP Activity Log Premium | Getting Started
WP Activity Log has been featured on the websites of some of the most popular and leading businesses in the WordPress ecosystem, such as WPBeginner, GoDaddy, and Kinsta.
MAINTAINED & SUPPORTED BY MELAPRESS
Melapress develops high-quality WordPress management and security plugins such as Melapress Login Security, CAPTCHA 4WP, and WP 2FA, the #1 user-rated activity log plugin for WordPress.
Browse our list of WordPress security and administration plugins to see how our plugins can help you better manage and improve the security and administration of your WordPress websites and users.
WordPress changes and details the WP Activity Log keeps a log of
As a comprehensive and thorough activity log solution for WordPress, WP Activity Log not only tells you that a post, a user profile, or an object was updated, it also lets you know exactly what was changed within the post, the user profile, or the object.
Below is a summary of the changes that the plugin can keep a record of:
-
Post, page and custom post type changes such as status, content changes, title, URL, custom field, and other metadata changes
-
Tags and categories changes such as creating, modifying or deleting them, and adding or removing them from posts
-
Widgets and menus changes such as creating, modifying, or deleting them
-
User changes such as user created or registered, deleted, or added to a site on multisite network
-
User profile changes such as password, email, display name, and role changes
-
User activity such as login, logout, failed logins, and terminating other sessions
-
WordPress core and settings changes such as installed updates, permalinks, default role, URL, and other site-wide changes
-
WordPress multisite network changes such as adding, deleting or archiving sites, adding or removing users from sites etc (activity logs for multisite networks).
-
Plugins and Themes changes such as installing, activating, deactivating, uninstalling, and updating
-
WordPress database changes such as when a plugin adds or removes a table
-
Changes on WooCommerce Stores & products, Yoast SEO, WPForms, Gravity Forms, Advanced Custom Fields (ACF), MainWP and other popular WordPress plugins.
-
WordPress site file changes such as new files are added, or existing ones are modified or deleted.
For every event that the plugin records it also reports the:
- Date & time (and milliseconds) of when it happened
- User & role of the user who did the change
- Source IP address from where the change happened
- The object on which the change has taken place
Refer to WordPress activity log event IDs for a complete list of all the changes WP Activity Log can keep a record of and a detailed explanation of what change every event ID represents.
Upgrade to WP Activity Log Premium and get even more
The premium version of WP Activity Log comes bundled with even more features to take your WordPress website administration and security to the next level.
With the premium edition of WP Activity Log, you get:
Premium features list
- See who is logged to your website in real-time,
- See what everyone is doing in real-time,
- Log off any user with just a click,
- Generate HTML and CSV reports,
- Get notified via email of important changes,
- Get instant SMS message alerts of critical site changes,
- Search filters to fine tune the search results and find what you need in seconds,
- Store activity log in an external database to improve security and scalability,
- Mirror the activity log to logs management systems such as AWS CloudWatch, Loggly and Papertrail in real-time,
- Easily mirror the logs in real-time to business communication systems such as Slack,
- Send a copy of your websites’ activity log to a log file on your web server in real-time,
- Archive old activity log data to another database for better storage and log management.
Refer to the WP Activity Log plugin features and benefits page to learn more about the benefits of upgrading to WP Activity Log Premium.
WP Activity Log third-party plugin support
WP Activity Log can keep also a detailed log of changes that happen on third-party plugins, including:
- WooCommerce: Keep a log of changes you and your team do in the WooCommerce store settings, orders, products, coupons, and much more.
- Yoast SEO: Keep a log of the Yoast SEO plugin settings changes, and also of the on-page SEO changes you and your team make in the Yoast SEO meta box.
- WPForms: Keep a log of the changes your team does in the WPForms plugin settings, forms, form files, entries (leads) and more.
- Gravity Forms: Keep a log of the changes your team does in the Gravity Forms plugin settings, forms, forms settings, entries (leads) and more.
- MemberPress: Keep a log of the changes in your MemberPress powered website, including plugin settings changes, memberships, payments, subscriptions and other changes that your team does on your website.
- bbPress: Keep a log of changes in bbPress forums, topics, bbPress settings and more.
- MainWP: Keep a log of the MainWP network changes and can see the activity logs of all child sites from one central location – the MainWP dashboard.
Refer to activity logs for third party WordPress plugins for a complete list of all the plugins WP Activity Log can keep a log of.
Other Noteworthy Features
On top of the comprehensive activity log, WP Activity Log also has a number of non-logging specific features that make it a complete WordPress logging solution, such as:
- Full WordPress multisite support
- Easily create your custom alerts & notifications to monitor additional functionality
- Built-in support for reverse proxies and web application firewalls
- Integration with WhatIsMyIpAddress.com allow you to get all information about an IP address with just a mouse click.
- Limit who can view the WordPress activity log by users or roles
- Settings to toggle (enable/disable) individual event IDs from the activity log
- Configurable dashboard widget highlighting the most recent critical activity
- Configurable WordPress activity log retention policies
- User avatar is displayed in the events for better recognizability
- and much more…
Free and premium support
Premium world-class support for WP Activity Log is free via email or through the WordPress support forums.
Note: Paid customer support is given priority and is provided via one-to-one email. Upgrade to Premium to benefit from priority support.
For any other queries, feedback, or if you simply want to get in touch with us, please use our contact form.
As featured on:
- Kinsta
- Pagely
- Shout Me Loud
- The Dev Couple
- WPKube
- Techwibe
- Tidy Repo
- KitPloit
- and many others.
Related links and documentation:
You can find more detailed information about WP Activity Log and its benefits in the links below
- The WP Activity Log plugin website
- List of WordPress activity log event IDs
- WP Activity Log benefits and features
- WordPress Multisite Features
- The definitive WordPress security guide
Installing WP Activity Log
Install WP Activity Log from within WordPress
- Visit ‘Plugins > Add New’
- Search for ‘WP Activity Log’
- Install and activate the WP Activity Log plugin
- Allow or skip diagnostic tracking
Install WP Activity Log manually
- Extract the plugin ZIP file and upload it to the
/wp-content/plugins/
directory - Activate the WP Activity Log plugin from the ‘Plugins’ menu in WordPress
- Allow or skip diagnostic tracking
Screenshots
FAQ
-
Does the free version of WP Activity Log limit the data it collects?
-
No, the free version does not limit the data the plugin collects. The preium version adds additional features such as extensive log filtering options, external database/log management service integration, user session management, and much more.
-
How long can I keep the log data for?
-
You can keep the log data for as long as you want to, with no limits whatsoever placed on data retention. You can keep the log data forever if you want to.
-
Does the plugin send any log data to Melapress?
-
No, the plugin does not send any log data to us whatsoever. The only data we recieve is license data from the premium edition of the plugin.
-
Does the plugin receive updates?
-
We update the plugin fairly regularly to ensure the plugin continues to run in tip-top shape while adding new features from time to time.
-
Will WP Activity Log slow down my website?
-
WP Activity Log will not slow down your website. Each release is tested before release to ensure it works in the best way possible. Having said that, you need to make sure your WordPress web server has adequate resources to manage the load of your website.
-
Support and Documentation
-
Please refer to our support pages for all the technical and product documentation.
-
How can I report security bugs?
-
You can report security bugs through the Patchstack Vulnerability Disclosure Program. Please use this form. For more details please refer to our Melapress plugins security program.
Reviews
Contributors & Developers
“WP Activity Log” is open source software. The following people have contributed to this plugin.
Contributors“WP Activity Log” has been translated into 9 locales. Thank you to the translators for their contributions.
Translate “WP Activity Log” into your language.
Interested in development?
Browse the code, check out the SVN repository, or subscribe to the development log by RSS.
Changelog
5.2.1 (2024-09-12)
- Bug fixes
- Fixed a crash in the WooCommerce sensor which happens when a new WooCommerce user is registered.
- Addressed problem with Redirection sensor when Rest API endpoint is checked.
- Fixed a crash and a number of PHP notices which are triggered when the Redirects plugin and Elementor are installed on the website.
- Addressed problem with system sensor when cron job is checked.
5.2.0 (2024-09-12)
-
New event IDs to report changes in Redirections plugin
In this update we are introducing out-of-the-box activity logging for changes done in the configuration of the Redirections plugin.- Event ID 10501: A new redirection was created.
- Event ID 10502: Activated a redirection.
- Event ID 10503: Deactivated a redirection.
- Event ID 10504: Changed the source URL of a redirection.
- Event ID 10505: Changed the query parameter of a redirection.
- Event ID 10506: Changed the target URL of a redirection.
- Event ID 10507: Changed the redirection group of a redirection.
- Event ID 10508: Deleted a redirection.
- Event ID 10509: Created a new redirection group.
- Event ID 10510: Activated a redirection group.
- Event ID 10511: Deactivated a redirection group.
- Event ID 10512: Renamed a redirection group.
- Event ID 10513: Changed the module type of a redirection group.
- Event ID 10514: Deleted a redirection group.
-
New event IDs to report WordPress Cron changes etc
In this update we are introducing coverage of changes in the WordPress cron and the cron jobs / tasks.- Event ID 6066: A new one-time task has been scheduled in the cron.
- Event ID 6067: A new recurring task has been scheduled in the cron.
- Event ID 6068: The schedule of a recurring cron task has changed.
- Event ID 6069: A one-time task has been executed by cron.
- Event ID 6070: A recurring task has been executed by cron.
- Event ID 6071: A one-time task has been deleted from the cron.
- Event ID 6072: A recurring task has been deleted from the cron.
-
Other generic new event IDs
- Event ID 6063: A new website site icon (favicon) has been added.
- Event ID 6064: The website site icon (favicon) was removed.
- Event ID 7013: Updated WordPress on the network subsites.
- Event ID 5720: Activated or deactivated a GravityForms form.
- Event ID 9155: A comment was added to a WooCommerce order.
-
Event ID 9156: A comment was deleted from a WooCommerce order.
- Plugin & functionality improvements
- Plugin checks for existing session cookie when user navigates directly to the login page so new users sessions are not created unnecessarily and no users are locked out when session management features are enabled.
- Set the default activity log retention policy to 3 months if not configured by the user.
- User is redirected to the activity log viewer page upon installing the plugin.
- Added some padding / improved plugin’s activity log view in MainWP.
- Added new top floating menu and a banner + footer links in the Free edition of the plugin.
- Improved the text of event ID 6063.
- Removed redundant code that was used to count the number of failed login attempts from an IP address. Now plugin reports every failed login attempt as an individual event in the log.
- Removed redundant code that was used to enable early plugin loading (was typically used on websites that use admin blocking plugins).
- Optimized the WooCommerce sensor to properly report the changes that take place when an order is place in WooCommerce – previously reported too many events which might be confusing.
- Improved support for custom WooCommerce order names (YITH).
- Event ID 1005 (user logged in from a different device) now counts towards the total number of logins when generating user login / activity reports.
- Added the “Settings” node in the MainWP menu (previously only available on the WordPress native dashboard, even when installed on MainWP).
- Applied several recognition updates to the detection of reverse proxy and WAF IP addresses feature.
-
Added some minor UI tweaks to the HTML reports.
- Bug fixes
- Fixed a number of fatal errors in the WooCommerce sensor which were caused in some edge cases.
- Fixed: Redirect group is now reported in event ID 10501. Previously “null” was reported.
- Fixed: Incorrect time was being reported in the Retention policies settings for the purging of old data in the activity log.
- Fixed: plugin settings not removed when option to delete settings upon uninstall is enabled on a multisite network.
- Fixed: event ID 9156 (changed note in WooCommerce order) reported instead of event ID 9155 (added note to a WooCommerce order).
- Form URL was not reported in some event IDs which report changes in Gravity Forms form changes.
- Fixed: Fatal error when editing WooCommerce products prices in bulk with Advanced Bulk Edit plugin.
- Fixed: Event ID 6064 reported instead of ID 6065 when switching the favicon.
- Fixed: Event ID 9156 was reported twice in the activity log when a WooCommerce order was placed by a non-logged in user.
- Fixed a number of PHP Notices, warnings and deprecated code messages by improving the code for better support of more recent PHP versions.
- Fixed: Plugin was not reporting the change when when the price of a WooCommerce product is changed to NULL via the REST API.
- Fixed a warning about an undefined array key “zapier_integration_active” when saving changes in the Yoast SEO plugin.
Refer to the complete plugin changelog for more detailed information about what was new, improved and fixed in previous version updates of WP Activity Log.