Title: WP Admin Audit
Author: brandtoss
Published: 1 An Gearran 2022
Last modified: 23 An t-Iuchar 2025
---
Search plugins
# WP Admin Audit
By [brandtoss](https://profiles.wordpress.org/brandtoss/)
[Download](https://downloads.wordpress.org/plugin/wp-admin-audit.1.2.16.zip)
* [Details](https://gd.wordpress.org/plugins/wp-admin-audit/#description)
* [Reviews](https://gd.wordpress.org/plugins/wp-admin-audit/#reviews)
* [Installation](https://gd.wordpress.org/plugins/wp-admin-audit/#installation)
* [Development](https://gd.wordpress.org/plugins/wp-admin-audit/#developers)
[Support](https://wordpress.org/support/plugin/wp-admin-audit/)
## Description
**The modern activity log solution for WordPress**
[WP Admin Audit](https://wpadminaudit.com/?utm_source=wordpress.org&utm_medium=referral&utm_campaign=WADA&utm_content=plugin+repo+description)
is the powerful monitoring log plugin for WordPress.
Site owners and administrators
can sleep better at night knowing the plugin keeps track of all site changes, security
events, and admin activities.
Ever wondered
* who unpublished a post?
* when a plugin was deactivated?
* how that strange new admin account appeared?
The WordPress activity log in WP Admin Audit answers these questions.
Keep track of everything that happens on your WordPress sites to:
* Have a log of every change that’s made
* Know about security-relevant activities
* Find out who did what and when they did it
* Analyze the steps that led to a technical problem
* Identify and mitigate automated login attempts by bots
### What is being logged?
The short answer: almost all changes on your WordPress site, but you can decide
what is kept in the audit log.
The longer answer: WP Admin Audit has sensors that monitor the changes in your WordPress
site and record what actions were performed by which user at which time on which
item. A summary of the types of monitored events is below.
* **Content:** Page and Post changes (e.g. post created/updated/published/unpublished/
deleted)
* **Taxonomy:** Changes to Categories and Tags (e.g. tag is created, updated, or
deleted)
* **User:** User registration, user profile updates, password resets, user deletions,
login, and logout
* **WordPress:** Updates of the WordPress core version, settings updates (general/
writing/reading/discussion/media/permalink/privacy settings)
* **Plugin:** Installation, activation, updates, deactivation, and deletion of
plugins
* **Theme:** Installation, activation (theme switch), update, and deletion of themes
* **Media:** Media file and data creations, updates, and deletions
* **Menu:** Creation, updates, and deletions of menus
* **Comment:** Comment creations, updates, deletions, and status changes (approved,
unapproved, spammed, etc.)
* **File:** File changes via the plugin file editor and theme file editor
See the complete list of sensors, i.e. [the event types that are stored in the WordPress activity log](https://wpadminaudit.com/documentation/wp-admin-audit/sensors/event-types/?utm_source=wordpress.org&utm_medium=referral&utm_campaign=WADA&utm_content=plugin+repo+description).
For every event WP Admin Audit records:
* Event type
* Date and time
* IP address (the action/event originated from)
* Acting user (the user who did the change)
* Subject (the item affected e.g. a post the action is done with/to)
### Features (free)
Besides the WordPress event log, WP Admin Audit also features:
* **Powerful search & filtering:** Powerful free-text search as well as filtering
by all sorts of categories makes it easy to find the data you are interested
in.
* **Administrator & user audit:** Find inactive administrator accounts and review
the users’ last login dates. Check on their individual activity log.
* **Login attempts audit:** Monitor logins to be aware of automated (brute-force)
attacks and to identify IP addresses for blocking.
### Features (premium editions)
Upgrade to the [premium editions](https://wpadminaudit.com/pricing/?utm_source=wordpress.org&utm_medium=referral&utm_campaign=WADA&utm_content=plugin+repo+description)
for the following features:
* **Third-party plugin support:** Optional extensions help you capture events happening
in other WordPress plugins. [See our extension directory for more details.](https://wpadminaudit.com/extensions/?utm_source=wordpress.org&utm_medium=referral&utm_campaign=WADA&utm_content=plugin+repo+description)
* **Notifications:** Select event types or event severity levels (e.g. critical
and high) for instant notification via email. You can choose whole user groups(
e.g. administrators), individual WordPress users, or selected email addresses.
* **Offsite archive / Replication:** To increase security and for backup purposes,
you can forward the events for storage to an external logging provider.
* **Enforce password changes:** You can enable a policy that requires users (with
specific user roles) to change their passwords regularly. For example, administrator
accounts can be required to change their passwords at least every 90 days.
* **CSV export:** Export events, users, and login attempts to CSV files.
[Click here for more details and for a complete feature list](https://wpadminaudit.com/feature-comparison/?utm_source=wordpress.org&utm_medium=referral&utm_campaign=WADA&utm_content=plugin+repo+description)
## Screenshots
* [[
* The dashboard provides an overview of the overall status (number of events and
sensors)
* [[
* All available sensors can be activated/deactivated and categorized for the severity(
i.e. how important the events recognized by the sensors are considered to be)
* [[
* The event log is the central hub of WP Admin Audit. It is essentially an audit
trail of all the activities of your admin(s) and other security relevant events.
* [[
* Each event is stored with a series of data that allows you to understand who
did what and which time
* [[
* Example event: a user account was edited where the password was changed and the
role was promoted from subscriber to editor
* [[
* Example event: password reset
* [[
* Example event: a page was published
* [[
* Example event: a plugin was activated
* [[
* Find the important sensors with the built-in search
* [[
* Search through the event log with the powerful built-in search and filter capabilities
* [[
* Filter the event log by the type of event / sensor
## Installation
#### Automatic installation
To do an automatic installation of WP Admin Audit, log in to your WordPress dashboard,
navigate to the Plugins menu, and click “Add New”.
In the search field type “WP
Admin Audit”, then click “Search Plugins”. Once you have located WP Admin Audit,
you can install it. Click “Install Now” and WordPress will proceed with the installation.
After the installation, make sure to activate the plugin as well.
#### Manual installation
Manual installation requires downloading the WP Admin Audit plugin (from this listing)
and uploading it to WordPress. The WordPress documentation has [a tutorial for that]
https://wordpress.org/documentation/article/manage-plugins/#upload-via-wordpress-
admin).
#### Updating
WP Admin Audit supports automatic updates.
## FAQ
### Where is the documentation?
Please see the [documentation on our site](https://wpadminaudit.com/documentation/wp-admin-audit/?utm_source=wordpress.org&utm_medium=referral&utm_campaign=WADA&utm_content=plugin+repo+description).
### How do I get support?
Feel free to reach out directly via the [contact form](https://wpadminaudit.com/contact/?utm_source=wordpress.org&utm_medium=referral&utm_campaign=WADA&utm_content=plugin+repo+description).
### Will you add event x?
Most probably yes!
We know there are still some WP core events missing. This applies
even more to 3rd party plugins where we want to release more extensions. The good
news is that we very actively developing the plugin and look for the feedback of
the users to know which events first to add. You can share your feedback directly
within the plugin, there is a link in the **Settings » Sensor** menu item.
### Can the plugin track the pages my visitors are browsing?
No, and we do not have any intention to add that kind of functionality.
WP Admin
Audit focuses on actions done by administrators and actions done by users which
could be security relevant (e.g. user account creation, user role changes, …).
### Is WP Admin Audit translation ready?
Yes, WP Admin Audit has full translation and localization support via the “wp-admin-
audit” text domain.
Based on your site language, required .mo and .po translation
files will be downloaded and placed into the default WordPress languages directory.
### How can I report security bugs?
You can report security bugs through the Patchstack Vulnerability Disclosure Program.
The Patchstack team help validate, triage and handle any security vulnerabilities.
[Report a security vulnerability.](https://patchstack.com/database/vdp/wp-admin-audit)
## Reviews
### [Crashed Websites](https://wordpress.org/support/topic/crashed-websites/)
[wadm](https://profiles.wordpress.org/wadm/) 26 An Gearran 2026 1 reply
My God, I really wanted this to work because I needed to track what the users where
doing but out of five cites I’ve installed it on, it has crashed three. That is
over 50% failure so its time to search for an alternative.
### [The plugin could not be enabled because it caused a critical error](https://wordpress.org/support/topic/the-plugin-could-not-be-enabled-because-it-caused-a-critical-error/)
[pawelboc](https://profiles.wordpress.org/pawelboc/) 26 An Dàmhair 2025 1 reply
The plugin could not be enabled because it caused a critical error.
### [Great and helpful support](https://wordpress.org/support/topic/great-and-helpful-support-3/)
[rridder](https://profiles.wordpress.org/rridder/) 1 Am Màrt 2024
The plugin gives us as a company good insight on what is causing errors on our website
by tracking plugin updates. With one of our plugin we actually got a fatal error
with WP admin but the team was very responsive and came with a quick update to solve
it.
### [Wonderful](https://wordpress.org/support/topic/wonderful-977/)
[HenryGR](https://profiles.wordpress.org/henrygr/) 18 An Gearran 2023
Are you wondering how to take control of your WP site? Search no more, this is the
plugin that you need; it makes what you need, the way you need. ,
### [Love the sensors and event detail!](https://wordpress.org/support/topic/love-the-sensors-and-event-detail/)
[Bowo](https://profiles.wordpress.org/qriouslad/) 16 Am Màrt 2022 3 replies
One of the better activity logger out there I must say. Love the list of sensors
which I hope will keep growing, and I especially love the event details screen.
Keep up the good work!
### [Fantastic !](https://wordpress.org/support/topic/fantastic-2966/)
[nick6352683](https://profiles.wordpress.org/nick6352683/) 1 An Gearran 2022 1
reply
I just tested this plugin, and it is fantastic. The Search list in the logs works
like a charm, besides events, I can search for logs for individual users as well,
and also the way we can filter the log is great too ! The only thing that worries
me for now, is that in the settings page, when I’m setting the “Keep events for:”
is not “registering”. After saving the my changes, every other change made on the
Settings page, is being shown correctly, but the “keep events for:” field, becomes
empty from the number of days I had set it to. The plugin however correctly logs
the change, and right now I have it for 1 day. In a day or two perhaps, it will
be clear if that part of the settings page actually works. It would be nice if we
could manually delete the logs, and also have the ability to export them… Update:
Looking at the database values, it seems that the correct value to keep the events
for is set (1 day in my test case), so it’s a matter of displaying the value in
the settings page, and not actually setting it. I am also guessing that to manually
delete all the data, is to set the setting to delete all the data when the plugin
is uninstalled, and then uninstall and reinstall it again, or manually delete the
records from the database, which for many users would be a dangerous task… BTW:
Tested on Xampp Localserver, Windows 10, PHP 7.4.x, Chrome Browser, WP 5.9, with
many plugins active among them Gutenberg 12.5.0 RC1. Thanks, Nick.
[ Read all 6 reviews ](https://wordpress.org/support/plugin/wp-admin-audit/reviews/)
## Contributors & Developers
“WP Admin Audit” is open source software. The following people have contributed
to this plugin.
Contributors
* [ brandtoss ](https://profiles.wordpress.org/brandtoss/)
“WP Admin Audit” has been translated into 3 locales. Thank you to [the translators](https://translate.wordpress.org/projects/wp-plugins/wp-admin-audit/contributors)
for their contributions.
[Translate “WP Admin Audit” into your language.](https://translate.wordpress.org/projects/wp-plugins/wp-admin-audit)
### Interested in development?
[Browse the code](https://plugins.trac.wordpress.org/browser/wp-admin-audit/), check
out the [SVN repository](https://plugins.svn.wordpress.org/wp-admin-audit/), or
subscribe to the [development log](https://plugins.trac.wordpress.org/log/wp-admin-audit/)
by [RSS](https://plugins.trac.wordpress.org/log/wp-admin-audit/?limit=100&mode=stop_on_copy&format=rss).
## Changelog
#### 1.2.16
_Release Date – July 24th, 2025_
* Fix error when duplicating posts/pages: Uncaught TypeError: array_keys(): Argument#
1 ($array) must be of type array
* New minimum PHP version changed from 5.6 to 7.0
* Prevent PHP warnings
* WordPress 6.8 compatibility
#### 1.2.15
_Release Date – April 15th, 2025_
* Fix for PHP notice “Function _load_textdomain_just_in_time was called incorrectly”
* WordPress 6.8 compatibility
#### 1.2.14
_Release Date – January 2nd, 2025_
* Fix Sensitive data exposure vulnerability (log file)
* Fix PHP error for old WP installs (< 5.5)
* Fix Displaying number of available extensions
#### 1.2.13
_Release Date – November 20th, 2024_
* WP Admin Audit joined the Patchstack VDP (Vulnerability Disclosure Program)
* Updated PUC library
* Tested with WP v6.7
#### 1.2.12
_Release Date – September 8th, 2024_
* Improvement: compatibility with WP Admin Audit extensions (for capturing events
in 3rd party plugin)
* Improvement: logging optimization
* Tested with WP v6.6
#### 1.2.11
_Release Date – June 27th, 2024_
* Fix: on dashboard (when login attempts widget is enabled) do not show column
selector under the screen options
* Improvement: dashboard loading time optimized
#### 1.2.10
_Release Date – June 1st, 2024_
* Fix: for bulk updates (of plugins and themes) record each item as a separate
update event
* UI improvement: show extensions summary on dashboard
* Avoid PHP warnings
* Updated PUC library
* Tested with WP v6.5
#### 1.2.9
_Release Date – February 20th, 2024_
* Fix issue when handling special posts being saved, causing e.g. incompatibility
with CM Tooltip Glossary Ecommerce plugin
* Fix “undefined array key” warnings
* Add log preview functionality
#### 1.2.8
_Release Date – November 14th, 2023_
* Updated PUC library
* Avoid PHP warnings
* Tested with WP v6.4
#### 1.2.7
_Release Date – October 2nd, 2023_
* Fix: Better Stack (replication, formerly known as Logtail) API endpoint updated
* Updated PUC library
* Tested with WP v6.3
#### 1.2.6
_Release Date – July 3rd, 2023_
* UI improvement: in the event details, non-changed attributes can be hidden
* UI improvement: in the event details, changes can be highlighted (diff of content
changes)
* Fix: showing plugin/theme file edits works
#### 1.2.5
_Release Date – June 1st, 2023_
* Add two new sensors: theme file edit / plugin file edit, including showing the
textual differences
* Fix: localize date and date/time in the user interface (format can be controlled
via WP Admin Audit settings)
* Fix: Do not show the “Login Attempts” widget if there is no login data recorded/
stored, yet
* Fix: avoid PHP warnings in PHP 8.1/8.2
* Add Logsnag as an option for notification target / recipient (premium only)
* Logtail (replication) now called Better Stack
* WP compatibility now from version 5.5 onwards
#### 1.2.4
_Release Date – April 8th, 2023_
* Add “Login Attempts” widget
* Fix: avoid database errors on installation
* Fix: avoid PHP warnings
#### 1.2.3
_Release Date – April 2nd, 2023_
* Add support for new extension for the third-party plugin WPForms
* Compatible with WordPress 6.2
* Fix: check for available extensions working
* Fix: avoid PHP warnings
#### 1.2.2
_Release Date – February 17th, 2023_
* Four new sensors: Option create / update (core) / update (other) / delete
* Improvement: login audit view gets filter (to filter to IP addresses that once/
never had a successful login attempt), show percentage of successful logins,
show percentage of existing usernames used in login attempts
* Improvement: for failed login attempts that tried to login into an existing username,
show the user account in the Event log list view, too
* Improvement: In diagnosis view add event log stats (e.g. top five event types)
* Fixing issues when WADA table collation is different from core (user / usermeta)
table
* Fix: password resets (through frontend/user) are recorded
* Fix: enforce password change only when enabled
#### 1.2.1
_Release Date – November 2nd, 2022_
* Fix potential infinite loop (in logging functionality)
* User interface improvements in settings (quicker load times)
* Prepare database to support extensions that record events of third-party plugins
#### 1.2.0
_Release Date – August 26th, 2022_
* Total of additional 19 new sensors for WP core events (categories, tags, comments,
menus)
* Plugin now keeps track of last user activity, and allows to for example identify
inactive admins
* Plugin now monitors login attempts, and allows to find the source (IP addresses)
of automated / brute-force login attempts
* New admin dashboard widget: “Last Activities” (can be disabled in settings)
* User interface improvement: add severity filter to events list
* Bug fix: post meta data changes are recorded as well on post update
#### 1.1.2
_Release Date – July 3rd, 2022_
* Fix installation issue
#### 1.1.1
_Release Date – July 2nd, 2022_
* Fix issue where new sensors were not installed by default
* Fix “join beta tester” button
* UI improvement: add loading indicators for admin tables when sorting/filtering/
etc.
* UI improvement: change pagination “items per page” setting from screen option
to dropdown
#### 1.1.0
_Release Date – June 27th, 2022_
* New sensors: WP general/writing/reading/discussion/media/permalink/privacy settings
* New feature: discover & install (missed) sensors via diagnostics view
* Fix for diagnostics view: download and delete log file buttons now work
* Fix for statistics on dashboard
#### 1.0.3
_Release Date – April 20th, 2022_
* Fix the sorting functionality on the sensor list view
* Improve rendering for deleted posts
* Various other small UI improvements
#### 1.0.2
_Release Date – February 18th, 2022_
* Fixes issue saving the event log retention period
* Introducing German translation
* Adding description (icons) in settings view
#### 1.0.1
_Release Date – February 1st, 2022_
* Fixes installation problem
#### 1.0.0
_Release Date – January 24th, 2022_
* Initial release
## Meta
* Version **1.2.16**
* Last updated **9 mìosan ago**
* Active installations **1,000+**
* WordPress version ** 5.5 or higher **
* Tested up to **6.8.5**
* PHP version ** 7.0 or higher **
* Languages
* [English (US)](https://wordpress.org/plugins/wp-admin-audit/), [German](https://de.wordpress.org/plugins/wp-admin-audit/),
[Spanish (Chile)](https://cl.wordpress.org/plugins/wp-admin-audit/), and [Spanish (Spain)](https://es.wordpress.org/plugins/wp-admin-audit/).
* [Translate into your language](https://translate.wordpress.org/projects/wp-plugins/wp-admin-audit)
* Tags
* [Activity Log](https://gd.wordpress.org/plugins/tags/activity-log/)[audit log](https://gd.wordpress.org/plugins/tags/audit-log/)
[audit trail](https://gd.wordpress.org/plugins/tags/audit-trail/)[security audit log](https://gd.wordpress.org/plugins/tags/security-audit-log/)
[user log](https://gd.wordpress.org/plugins/tags/user-log/)
* [Advanced View](https://gd.wordpress.org/plugins/wp-admin-audit/advanced/)
## Ratings
3.7 out of 5 stars.
* [ 4 5-star reviews ](https://wordpress.org/support/plugin/wp-admin-audit/reviews/?filter=5)
* [ 0 4-star reviews ](https://wordpress.org/support/plugin/wp-admin-audit/reviews/?filter=4)
* [ 0 3-star reviews ](https://wordpress.org/support/plugin/wp-admin-audit/reviews/?filter=3)
* [ 0 2-star reviews ](https://wordpress.org/support/plugin/wp-admin-audit/reviews/?filter=2)
* [ 2 1-star reviews ](https://wordpress.org/support/plugin/wp-admin-audit/reviews/?filter=1)
[Add my review](https://wordpress.org/support/plugin/wp-admin-audit/reviews/#new-post)
[See all reviews](https://wordpress.org/support/plugin/wp-admin-audit/reviews/)
## Contributors
* [ brandtoss ](https://profiles.wordpress.org/brandtoss/)
## Support
Got something to say? Need help?
[View support forum](https://wordpress.org/support/plugin/wp-admin-audit/)