[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f43SGu2Z3qN4ghWFew7zP_4zzt0TAJsW9U16WRk-vSNY":3,"$fJpF6KJaVdGb83JT9zdZRKn08OD3-_DSVrNBFFQgJ4ck":343,"$f7IWPYepl8qA05qUcciRWUKXBXRDqaapbF_Qn0MtA5NE":347},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":13,"last_updated":14,"tested_up_to":15,"requires_at_least":16,"requires_php":17,"tags":18,"homepage":24,"download_link":25,"security_score":26,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28,"discovery_status":29,"vulnerabilities":30,"developer":31,"crawl_stats":27,"alternatives":39,"analysis":144,"fingerprints":322},"stalkfish","Stalkfish – Error Monitoring and Activity Log Monitoring","1.2.1","Ram Ratan Maurya","https:\u002F\u002Fprofiles.wordpress.org\u002Fmauryaratan\u002F","\u003Cp>Stalkfish is a no setup plugin that will monitor and log all the site activity, error and crashes without bloating your database. All the errors and activity logs are stored in your Stalfish account, and can be accessed via the Stalkfish dashboard without compromising your site privacy.\u003C\u002Fp>\n\u003Cp>Unlike alternative plugins, Stalkfish does not require any configuration, and is compatible with most recent WordPress versions. We provide a dedicated monitoring system for your site, and a dashboard to view and manage activity for all your WordPress sites, in once place.\u003C\u002Fp>\n\u003Ch3>Why use an activity logging and monitoring plugin?\u003C\u002Fh3>\n\u003Cp>Don’t you hate it when you have no clue when something on your site changed, and you have no idea why? Stalkfish helps you keep track of all your site activity, and you can see what’s going on in a single place. This helps you locate when a particular action was performed on your site.\u003C\u002Fp>\n\u003Ch3>Benefits of Stalkfish\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Track any activity:\u003C\u002Fstrong> Stalkfish will monitor all the activities on your site, and log it to Stalkfish server with contextual data that will help you locate what has changed.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Track errors:\u003C\u002Fstrong> Stalkfish would automatically track all errors on your site and alert you as needed.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Share event data:\u003C\u002Fstrong> Easily creating public links that can be shared with others. You may set a range of expiry dates for the link, and the link will be automatically deleted after the expiry date.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Get alerts for important events:\u003C\u002Fstrong> Create contextual alerts and get notified when something specific happens on your site.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Unlimited sites:\u003C\u002Fstrong> Stalkfish gives you unlimited sites to monitor in a decent dedicated dashboard.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Get Started with Stalkfish\u003C\u002Fh3>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fstalkfish.com\" rel=\"nofollow ugc\">Stalkfish\u003C\u002Fa> is a SaaS product, and we offer a free plan for personal use. You can record upto 500 events per month for free, ideal if you’re trying the plugin or using it on small sites and still feel secure.\u003C\u002Fp>\n\u003Ch3>What activities are tracked?\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>Posts, Pages and Custom Post Types\u003C\u002Fstrong> – Log all the activities\u002Fevents associated including metadata and custom fields\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Taxonomies\u003C\u002Fstrong> – Log any and all changes from creation to attachment in posts and CPTs.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Comments\u003C\u002Fstrong> – Log all the comment updates from status changes to spamming.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Users\u003C\u002Fstrong> – Log all user logins to any profile changes.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Media & Library\u003C\u002Fstrong> – Log all the media uploads to attachment in posts and CPTs.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Settings\u003C\u002Fstrong> – Log all setting updates from general to privacy.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Customizer\u003C\u002Fstrong> – Log any and all WordPress Customizer changes including theme modifications.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Plugins and Themes\u003C\u002Fstrong> – Log all theme and plugin installations to uninstalls.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Widgets\u003C\u002Fstrong> – Log any and all sidebar changes to widget updates.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Classic Editor and Block (Gutenberg) Editor\u003C\u002Fstrong> – Log all the editor updates from post creation to deletion.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WordPress Core Updates\u003C\u002Fstrong> – Log WordPress core updates from manual to auto.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Multisite\u003C\u002Fstrong> (Coming Soon) – Log network wide site updates from adding them to removal.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>That’s not it! We’re working around the clock to improve your experience and add more useful activity logging.\u003C\u002Fp>\n\u003Ch4>Privacy\u003C\u002Fh4>\n\u003Cp>Stalkfish is a SaaS (software as a service) connector plugin that uses a custom API to log all the site activity. We only store event data on Stalkfish server which do not include any sensitive data, and we do not share your data with anyone. We do record user’s IP who performs an activity to give you a better insight of action’s origin. Respecting your privacy is our top-most priority.\u003C\u002Fp>\n","Stalkfish actively tracks error, crashes, and activity log on your WordPress site and sends them to your Stalkfish dashboard.",10,2336,0,"2023-08-08T12:12:00.000Z","6.3.8","5.6","7.1",[19,20,21,22,23],"activity-log","audit-log","monitoring","user-activity","user-log","https:\u002F\u002Fstalkfish.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstalkfish.1.2.1.zip",85,null,"2026-04-16T10:56:18.058Z","no_bundle",[],{"slug":32,"display_name":7,"profile_url":8,"plugin_count":33,"total_installs":34,"avg_security_score":35,"avg_patch_time_days":36,"trust_score":37,"computed_at":38},"mauryaratan",4,3110,79,217,64,"2026-05-19T20:02:49.413Z",[40,61,84,105,124],{"slug":41,"name":42,"version":43,"author":44,"author_profile":45,"description":46,"short_description":47,"active_installs":48,"downloaded":49,"rating":48,"num_ratings":50,"last_updated":51,"tested_up_to":52,"requires_at_least":53,"requires_php":54,"tags":55,"homepage":56,"download_link":57,"security_score":58,"vuln_count":59,"unpatched_count":13,"last_vuln_date":60,"fetched_at":28},"logdash-activity-log","LogDash Activity Log","1.2","Deryck","https:\u002F\u002Fprofiles.wordpress.org\u002Fderyck\u002F","\u003Cp>LogDash Activity Log is the ultimate solution for tracking activities on your WordPress site. With its comprehensive features and intuitive interface, managing your website’s activity log has never been easier.\u003C\u002Fp>\n\u003Cp>Designed with simplicity in mind, LogDash Activity Log allows you to effortlessly monitor and track all actions on your WordPress site, including user logins, content changes, plugin updates, and more. Its user-friendly dashboard gives you instant access to critical information, making it easy to identify and resolve issues quickly.\u003C\u002Fp>\n\u003Cp>Whether you’re managing a personal blog or a large corporate website, LogDash Activity Log Plugin is the perfect tool for enhancing your site’s security.\u003C\u002Fp>\n\u003Cp>Log everything that happens on you WordPress website to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Gain full visibility:\u003C\u002Fstrong> Stay informed about everything happening on your WordPress site, from user logins and content updates to plugin installations and more.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Strengthen site security:\u003C\u002Fstrong> Easily spot suspicious behavior before it becomes a security threat with real-time alerts and customizable notifications, providing an added layer of protection for your site.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Boost user productivity:\u003C\u002Fstrong> Monitor user activity and identify ways to optimize your site and workflow, leading to increased productivity.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Enhance user accountability:\u003C\u002Fstrong> Keep your users accountable with detailed logs of their actions on your site. This helps to promote responsible behavior and reduce errors.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Simplify troubleshooting:\u003C\u002Fstrong> Makes it easy to pinpoint the source of errors or issues on your site, enabling you to troubleshoot more efficiently and effectively.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Streamline site management:\u003C\u002Fstrong> Make use of shortcuts to gain quick access to modified content, simplifying site administration and reducing complexity.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>LogDash Activity Log is FREE. You can keep your log events for as long as you need – there’s no restriction on the duration of your logs.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Here’s an overview of the modifications that the plugin is capable of tracking and storing:\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Core Updates:\u003C\u002Fstrong> such as upgrades, downgrades and re-downloads.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Themes:\u003C\u002Fstrong> such as downloads, installations, upgrades, activations, theme switch and deletions.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Plugins:\u003C\u002Fstrong> such as downloads, installations, upgrades, activations, theme switch and deletions.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Files:\u003C\u002Fstrong> such as uploads or every files, including plugins and themes and updates in WordPress theme or plugin editors.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Attachments:\u003C\u002Fstrong> Uploads and updates for every attachment.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Posts, Pages and Custom Posts:\u003C\u002Fstrong> such as title, content (with quick link to rollback revisions), status, taxonomies and many more.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Settings:\u003C\u002Fstrong> such as the Blog Title, Date format and every setting in WordPress.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Categories, Tags and Custom Taxonomies:\u003C\u002Fstrong> such as creating, removing, updating and adding values to posts, pages and custom posts.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Users profile changes:\u003C\u002Fstrong> such as name, email, role changes (including support for multiple roles) and every profile related data.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>User activity:\u003C\u002Fstrong> such as failed logins, login, logout and terminating other user sessions.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Cstrong>Note:\u003C\u002Fstrong> LogDash also support WooCommerce, ACF, LogDash as well a every Custom Post Type. Support will be improved and extended in a Premium version in the future.\u003C\u002Fp>\n","The ultimate solution for tracking activities and security issues on your WordPress site.",100,3103,2,"2024-07-11T21:39:00.000Z","6.6.5","5.9.5","7.4",[19,20,22,23],"https:\u002F\u002Fderyckoe.com\u002Flogdash-activity-log","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flogdash-activity-log.1.2.zip",90,1,"2023-10-26 00:00:00",{"slug":62,"name":63,"version":64,"author":65,"author_profile":66,"description":67,"short_description":68,"active_installs":69,"downloaded":70,"rating":71,"num_ratings":72,"last_updated":73,"tested_up_to":74,"requires_at_least":75,"requires_php":76,"tags":77,"homepage":80,"download_link":81,"security_score":26,"vuln_count":82,"unpatched_count":13,"last_vuln_date":83,"fetched_at":28},"aryo-activity-log","Activity Log – Monitor & Record User Changes","2.11.2","Elementor","https:\u002F\u002Fprofiles.wordpress.org\u002Felemntor\u002F","\u003Cp>\u003Cstrong>AN EASY TO USE & FULLY SUPPORTED WORDPRESS ACTIVITY LOG PLUGIN\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Want to monitor and track your WordPress website activity? Find out exactly who does what on your WordPress website with this plugin. Activity Log is like an airplane’s black box that logs every action in the WordPress admin, and lets you see exactly what users are doing on your WordPress website.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>If someone is trying to hack your site\u003C\u002Fli>\n\u003Cli>When a post was published, and who published it\u003C\u002Fli>\n\u003Cli>If a plugin\u002Ftheme was activated\u002Fdeactivated\u003C\u002Fli>\n\u003Cli>Suspicious admin activity\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>It’s so essential; you’ll wonder how you ever managed your website without it. The plugin is also lightning fast and works behind the scenes, so it doesn\\’t affect site and admin performance. For optimal performance, we built the plugin so that it runs on a separate table in the database.\u003C\u002Fp>\n\u003Cp>If you have more than a handful of users, keeping track of who did what is virtually impossible. This plugin solves that issue by tracking what actions were initiated by which users, and displaying it in an easy-to-use and easy-to-filter view on the dashboard of your WordPress site.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>New! Introducing Email Logging\u003C\u002Fstrong> – Capture all emails sent from your WordPress site for streamlined debugging and compliance. Gain better visibility into email communication, aiding both troubleshooting and record-keeping. This is particularly beneficial for WooCommerce stores, allowing you to easily track sent emails alongside other critical site events.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Export to CSV\u003C\u002Fstrong> – Export your Activity Log data records to CSV. Developers can easily add support for custom data formats with our new dedicated Export API.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>Data Privacy and GDPR Compliance\u003C\u002Fstrong> – We provide the tools to help you adhere to GDPR compliance standards, including Export\u002FErasure of data via the WordPress Privacy Tools.\u003C\u002Fp>\n\u003Ch3>With the Activity Log you can record:\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cstrong>WordPress\u003C\u002Fstrong> – Core updates\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Posts\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Pages\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Custom Post Type\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Tags\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Categories\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Taxonomies\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Menus\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Media\u003C\u002Fstrong> – Created, updated, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Comments\u003C\u002Fstrong> – Created, approved, unapproved, trashed, untrashed, spammed, unspammed, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Users\u003C\u002Fstrong> – Login, logout, login failed, update profile, registered, deleted\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Plugins\u003C\u002Fstrong> – Installed, updated, activated, deactivated, changed\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Themes\u003C\u002Fstrong> – Installed, updated, deleted, activated, changed (Editor and Customizer)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Widgets\u003C\u002Fstrong> – Added to sidebar, deleted from sidebar, order widgets\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Setting\u003C\u002Fstrong> – General, writing, reading, discussion, media, permalinks\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Options\u003C\u002Fstrong> – Extended custom settings for 3rd party plugins\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Export\u003C\u002Fstrong> – Exported activity log file\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WooCommerce\u003C\u002Fstrong> – Track products, orders, customers, and more\u003C\u002Fli>\n\u003Cli>\u003Cstrong>bbPress\u003C\u002Fstrong> – Forums, topics, replies, taxonomies, and other actions\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Emails sent from WordPress site\u003C\u002Fstrong> – Sending successful, sending failed\u003C\u002Fli>\n\u003Cli>There’s more, of course, but you get the point…\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>For each event recorded by the activity log, the following details are also logged:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Date and time of occurrence\u003C\u002Fli>\n\u003Cli>User and user role responsible for the change\u003C\u002Fli>\n\u003Cli>Source IP address from which the change originated\u003C\u002Fli>\n\u003Cli>Affected object where the change occurred\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The plugin doesn\\’t require any kind of setup; it works right out of the box (just another reason people love it)!\u003C\u002Fp>\n\u003Ch3>Data Storage and Performance Optimization\u003C\u002Fh3>\n\u003Cp>In order to ensure optimal performance of your website, all events and logs data are stored in a dedicated custom table within your WordPress database. This approach significantly reduces the impact on your website’s performance, ensuring seamless operation even during peak traffic periods.\u003C\u002Fp>\n\u003Ch3>Uninstall Clean-up\u003C\u002Fh3>\n\u003Cp>We understand the importance of maintaining a clean and efficient database environment. That’s why our plugin features an uninstall hook that seamlessly removes all traces of its presence from your website when uninstalling. This meticulous clean-up process ensures that your database remains lean and clutter-free even after our plugin has been removed.\u003C\u002Fp>\n\u003Cp>\u003Cstrong>With our optimized data storage, thorough logging, and meticulous clean-up process, you can trust that our plugin will enhance the functionality and security of your WordPress site without compromising its performance.\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Ch3>What users have to say\u003C\u002Fh3>\n\u003Cul>\n\u003Cli>\u003Cem>“Its tools, particularly for data privacy and GDPR compliance, make it indispensable for websites operating within European Union boundaries or dealing with EU citizens’ data”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fblog.hubspot.com\u002Fwebsite\u002F8-best-plugins-tracking-user-activity-wordpress\" rel=\"nofollow ugc\">HubSpot.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“If you’re after a competent WP security audit log plugin with all the basic features you need, Activity Log is it!”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fwpastra.com\u002Fplugins\u002Fwordpress-activity-log-plugins\u002F\" rel=\"nofollow ugc\">WPAstra.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“Activity Log features a remarkably straightforward dashboard interface, providing administrators with an at-a-glance understanding of site interactions”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fwww.malcare.com\u002Fblog\u002Fwordpress-activity-log\u002F\" rel=\"nofollow ugc\">Malcare.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“Best 10 Free WordPress Plugins of the Month: Keeping tabs on what your users do with their access to the Dashboard”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fmanagewp.com\u002Fbest-free-wordpress-plugins-july-2014\" rel=\"nofollow ugc\">ManageWP.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“Thanks to this step, we’ve discovered that our site was undergoing a brute force attack”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fartdriver.com\u002Fblog\u002Fwordpress-site-hacked-solution-time\" rel=\"nofollow ugc\">Artdriver.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“Optimized code – The plugin itself is blazing fast and leaves almost no footprint on the server”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fwww.freshtechtips.com\u002F2014\u002F01\u002Fbest-audit-trail-plugins-for-wordpress.html\" rel=\"nofollow ugc\">FreshTechTips.com\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cem>“Activity Log lets you track a huge range of activities. Overall, very easy to use and setup”\u003C\u002Fem> – \u003Ca href=\"https:\u002F\u002Fwww.elegantthemes.com\u002Fblog\u002Ftips-tricks\u002F5-best-ways-to-monitor-wordpress-activity-via-the-dashboard\" rel=\"nofollow ugc\">ElegantThemes.com\u003C\u002Fa>\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Contributions:\u003C\u002Fh3>\n\u003Cp>\u003Cstrong>Would you like to contribute to this plugin?\u003C\u002Fstrong> You’re more than welcome to submit your pull requests on the \u003Ca href=\"https:\u002F\u002Fgithub.com\u002Fpojome\u002Factivity-log\" rel=\"nofollow ugc\">GitHub repo\u003C\u002Fa>. And, if you have any notes about the code, please open a ticket on the issue tracker.\u003C\u002Fp>\n","This top rated Activity Log plugin helps you monitor & log all changes and actions on your WordPress site, so you can remain secure and organized.",200000,4007371,86,74,"2024-11-12T14:55:00.000Z","6.7.5","6.0","7.0",[19,20,78,79,23],"email-log","security","https:\u002F\u002Factivitylog.io\u002F?utm_source=wp-plugins&utm_campaign=plugin-uri&utm_medium=wp-dash","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Faryo-activity-log.2.11.2.zip",9,"2024-11-20 17:10:23",{"slug":85,"name":86,"version":87,"author":88,"author_profile":89,"description":90,"short_description":91,"active_installs":92,"downloaded":93,"rating":48,"num_ratings":33,"last_updated":94,"tested_up_to":95,"requires_at_least":96,"requires_php":54,"tags":97,"homepage":101,"download_link":102,"security_score":103,"vuln_count":59,"unpatched_count":13,"last_vuln_date":104,"fetched_at":28},"logtivity","Activity Logs, User Activity Tracking, Multisite Activity Log from Logtivity","3.3.7","Logtivity Activity Logs","https:\u002F\u002Fprofiles.wordpress.org\u002Flogtivity\u002F","\u003Cp>\u003Cstrong>When you set up Logtivity to monitor your WordPress sites, you can relax. We track everything that happens on the sites you maintain, and Logtivity also sends you alerts for important events!\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>Logtivity is a unified platform that tracks activity and errors across all your WordPress sites. We record everything that happens, and then send you alerts for important events! You can install Logtivity’s plugin and then use our service to keep a close eye on everything that happens on your sites.\u003C\u002Fp>\n\u003Cp>If you work with clients, they never have to know that you’re using Logtivity. You can either show a white label version of the activity logs, or you can hide Logtivity entirely.\u003C\u002Fp>\n\u003Ch3>WordPress Activity Logs\u003C\u002Fh3>\n\u003Cp>Logtivity provides the best activity logs for WordPress agencies. You can record all the user activity on your clients’ sites. Then you can use the activity log data to send notifications to email or Slack. Plus, you can easily search and export the information. And you can turn the activity log data into beautiful, useful charts.\u003C\u002Fp>\n\u003Cp>If you have customers on your clients’ WordPress site, you’ll find Logtivity to be invaluable. Because Logtivity records all the important activity, you can see real customer journeys across the WordPress sites. This can be incredibly helpful for customer support: the activity log will show exactly what a user has done on your site.\u003C\u002Fp>\n\u003Cp>To get started, simply install the Logtivity plugin and then connect your site to \u003Ca href=\"https:\u002F\u002Flogtivity.io\" rel=\"nofollow ugc\">Logtivity\u003C\u002Fa>. You’ll immediately start to see the results.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Flogtivity.io\u002Ffeatures\u002Fevent-tracking\u002F\" rel=\"nofollow ugc\">Click here to see more about activity logs\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Instant Alerts for WordPress Sites\u003C\u002Fh3>\n\u003Cp>With Logtivity alerts, you can keep an eye on all your clients’ sites. You can set up flexible alerts for single sites or all your clients’ sites.\u003C\u002Fp>\n\u003Cp>These notifications can go directly to your email inbox or to Slack channels.\u003C\u002Fp>\n\u003Cp>If you have many sites, you can set up global alerts. For example, even if you have 100 sites, you only need to configure the alert once.\u003C\u002Fp>\n\u003Cp>One Logtivity customer chooses to receive an email every time a plugin or theme is updated. Another WordPress agency has a Slack alert for every time an administrator logs in.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Flogtivity.io\u002Ffeatures\u002Finstant-alerts\u002F\" rel=\"nofollow ugc\">Click here to see more about alerts\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Charts from Your Activity Logs\u003C\u002Fh3>\n\u003Cp>Logtivity is a WordPress activity log with a big difference. You can track all the activity on your clients’ sites, and you can also turn that information into beautiful and useful charts.\u003C\u002Fp>\n\u003Cp>Displaying data in charts gives you a helpful and organized overview of your clients’ key metrics. You can use these charts to show logins, purchases, subscriptions, cancellations, downloads, or any other key events. If it happens in WordPress site, Logtivity can turn it into a bar chart or a line chart.\u003C\u002Fp>\n\u003Cp>You can also customize the date range for charts. Your charts have advanced date ranges, so you can zoom in to view any time period.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Flogtivity.io\u002Ffeatures\u002Fcustomisable-reporting-dashboard\u002F\" rel=\"nofollow ugc\">Click here to see more about charts\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Large Activity Log Exports\u003C\u002Fh3>\n\u003Cp>Normal WordPress activity plugins can not handle large amounts of data.\u003C\u002Fp>\n\u003Cp>Logtivity is able to handle exports for even the biggest WordPress sites! If your clients’ site uses Logtivity, you can export millions and millions of logs.\u003C\u002Fp>\n\u003Cp>In the image next to this text, you can see over a dozen CSV files. Each of these files is a Logtivity export that contains 100,000 logs. This export has 13 files, so it’s over 1,300,000 million logs in total.\u003C\u002Fp>\n\u003Cp>Logtivity is the activity log solution for large WordPress sites!\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Flogtivity.io\u002Ffeatures\u002Flarge-exports\u002F\" rel=\"nofollow ugc\">Click here to see more about log exports\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>View Activity Logs Inside WordPress\u003C\u002Fh3>\n\u003Cp>Logtivity has a central dashboard where you can see the logs for all your clients’ WordPress sites.\u003C\u002Fp>\n\u003Cp>Plus, you and your clients can also view and search the logs from inside each WordPress site.\u003C\u002Fp>\n\u003Cp>The image on this screen shows what you’ll see inside WordPress after installing the Logtivity plugin.\u003C\u002Fp>\n\u003Cp>All of the activity log data is visible and searchable in the WordPress admin area. And if you want more information on any specific log entry, you can click the “View” button next to each log.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Flogtivity.io\u002Ffeatures\u002Feasy-wordpress-integration\u002F\" rel=\"nofollow ugc\">Click here to see more about the WordPress integration\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>WordPress Error Logs\u003C\u002Fh3>\n\u003Cp>Logtivity records all PHP errors on your sites, including Errors, Warnings, and Notices.\u003C\u002Fp>\n\u003Cp>You can see the errors, how often they occur, and when they last occurred. It doesn’t matter where your site is hosted. Our logs will record the errors and point you to the file that’s causing problems.\u003C\u002Fp>\n\u003Cp>We’ll notify you as soon as an error occurs, allowing you to jump on it as soon as possible rather than waiting for a user to report it.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Flogtivity.io\u002Ffeatures\u002Ferror-logs\u002F\" rel=\"nofollow ugc\">Click here to see more about error logs\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Logtivity has a White Label Mode for Agencies\u003C\u002Fh3>\n\u003Cp>The most frequent users of Logtivity are WordPress agencies and maintenance services who want to keep an eye on lots of websites.\u003C\u002Fp>\n\u003Cp>Agencies and maintenance services often white label the services they use, and so we’ve made this possible for Logtivity also.\u003C\u002Fp>\n\u003Cp>There’s a “White Label Mode” in Logtivity, so you can provide the smoothest experience possible for clients. You can remove all the references to Logtivity from the WordPress admin area.\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Flogtivity.io\u002Ffeatures\u002Fwhite-label\u002F\" rel=\"nofollow ugc\">Click here to see more about the White Label mode\u003C\u002Fa>.\u003C\u002Fp>\n\u003Ch3>Join Logtivity and Start Your Monitoring\u003C\u002Fh3>\n\u003Cblockquote>\n\u003Cp>\u003Cstrong>Logtivity is a SaaS service\u003C\u002Fstrong>\u003Cbr \u002F>\n  You will need to create a Logtivity account to store your activity logs and create alerts. \u003Ca href=\"https:\u002F\u002Fapp.logtivity.io\u002Fregister\" title=\"Logtivity\" rel=\"friend nofollow ugc\">Click here to get started with Logtivity!\u003C\u002Fa>\u003C\u002Fp>\n\u003C\u002Fblockquote>\n","Logtivity is the activity log service for WordPress admins. Logtivity is a unified activity log platform that tracks activity and errors across all yo &hellip;",2000,46726,"2026-04-15T19:09:00.000Z","6.9.4","4.7",[19,98,99,100,22],"error-log","error-logs","event-monitoring","https:\u002F\u002Flogtivity.io","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Flogtivity.3.3.7.zip",99,"2026-05-08 23:40:04",{"slug":106,"name":107,"version":108,"author":109,"author_profile":110,"description":111,"short_description":112,"active_installs":113,"downloaded":114,"rating":72,"num_ratings":115,"last_updated":116,"tested_up_to":117,"requires_at_least":118,"requires_php":76,"tags":119,"homepage":122,"download_link":123,"security_score":48,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"wp-admin-audit","WP Admin Audit","1.2.16","brandtoss","https:\u002F\u002Fprofiles.wordpress.org\u002Fbrandtoss\u002F","\u003Cp>\u003Cstrong>The modern activity log solution for WordPress\u003C\u002Fstrong>\u003C\u002Fp>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwpadminaudit.com\u002F?utm_source=wordpress.org&utm_medium=referral&utm_campaign=WADA&utm_content=plugin+repo+description\" rel=\"nofollow ugc\">WP Admin Audit\u003C\u002Fa> is the powerful monitoring log plugin for WordPress.\u003Cbr \u002F>\nSite owners and administrators can sleep better at night knowing the plugin keeps track of all site changes, security events, and admin activities.\u003C\u002Fp>\n\u003Cp>Ever wondered\u003C\u002Fp>\n\u003Cul>\n\u003Cli>who unpublished a post?\u003C\u002Fli>\n\u003Cli>when a plugin was deactivated?\u003C\u002Fli>\n\u003Cli>how that strange new admin account appeared?\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>The WordPress activity log in WP Admin Audit answers these questions.\u003C\u002Fp>\n\u003Cp>Keep track of everything that happens on your WordPress sites to:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Have a log of every change that’s made\u003C\u002Fli>\n\u003Cli>Know about security-relevant activities\u003C\u002Fli>\n\u003Cli>Find out who did what and when they did it\u003C\u002Fli>\n\u003Cli>Analyze the steps that led to a technical problem\u003C\u002Fli>\n\u003Cli>Identify and mitigate automated login attempts by bots\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>What is being logged?\u003C\u002Fh3>\n\u003Cp>The short answer: almost all changes on your WordPress site, but you can decide what is kept in the audit log.\u003C\u002Fp>\n\u003Cp>The longer answer: WP Admin Audit has sensors that monitor the changes in your WordPress site and record what actions were performed by which user at which time on which item. A summary of the types of monitored events is below.\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Content:\u003C\u002Fstrong> Page and Post changes (e.g. post created\u002Fupdated\u002Fpublished\u002Funpublished\u002Fdeleted)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Taxonomy:\u003C\u002Fstrong> Changes to Categories and Tags (e.g. tag is created, updated, or deleted)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>User:\u003C\u002Fstrong> User registration, user profile updates, password resets, user deletions, login, and logout\u003C\u002Fli>\n\u003Cli>\u003Cstrong>WordPress:\u003C\u002Fstrong> Updates of the WordPress core version, settings updates (general\u002Fwriting\u002Freading\u002Fdiscussion\u002Fmedia\u002Fpermalink\u002Fprivacy settings)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Plugin:\u003C\u002Fstrong> Installation, activation, updates, deactivation, and deletion of plugins\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Theme:\u003C\u002Fstrong> Installation, activation (theme switch), update, and deletion of themes\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Media:\u003C\u002Fstrong> Media file and data creations, updates, and deletions\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Menu:\u003C\u002Fstrong> Creation, updates, and deletions of menus\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Comment:\u003C\u002Fstrong> Comment creations, updates, deletions, and status changes (approved, unapproved, spammed, etc.)\u003C\u002Fli>\n\u003Cli>\u003Cstrong>File:\u003C\u002Fstrong> File changes via the  plugin file editor and theme file editor\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>See the complete list of sensors, i.e. \u003Ca href=\"https:\u002F\u002Fwpadminaudit.com\u002Fdocumentation\u002Fwp-admin-audit\u002Fsensors\u002Fevent-types\u002F?utm_source=wordpress.org&utm_medium=referral&utm_campaign=WADA&utm_content=plugin+repo+description\" rel=\"nofollow ugc\">the event types that are stored in the WordPress activity log\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>For every event WP Admin Audit records:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>Event type\u003C\u002Fli>\n\u003Cli>Date and time\u003C\u002Fli>\n\u003Cli>IP address (the action\u002Fevent originated from)\u003C\u002Fli>\n\u003Cli>Acting user (the user who did the change)\u003C\u002Fli>\n\u003Cli>Subject (the item affected e.g. a post the action is done with\u002Fto)\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Features (free)\u003C\u002Fh3>\n\u003Cp>Besides the WordPress event log, WP Admin Audit also features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Powerful search & filtering:\u003C\u002Fstrong> Powerful free-text search as well as filtering by all sorts of categories makes it easy to find the data you are interested in.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Administrator & user audit:\u003C\u002Fstrong> Find inactive administrator accounts and review the users’ last login dates. Check on their individual activity log.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Login attempts audit:\u003C\u002Fstrong> Monitor logins to be aware of automated (brute-force) attacks and to identify IP addresses for blocking.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch3>Features (premium editions)\u003C\u002Fh3>\n\u003Cp>Upgrade to the \u003Ca href=\"https:\u002F\u002Fwpadminaudit.com\u002Fpricing\u002F?utm_source=wordpress.org&utm_medium=referral&utm_campaign=WADA&utm_content=plugin+repo+description\" rel=\"nofollow ugc\">premium editions\u003C\u002Fa> for the following features:\u003C\u002Fp>\n\u003Cul>\n\u003Cli>\u003Cstrong>Third-party plugin support:\u003C\u002Fstrong> Optional extensions help you capture events happening in other WordPress plugins. \u003Ca href=\"https:\u002F\u002Fwpadminaudit.com\u002Fextensions\u002F?utm_source=wordpress.org&utm_medium=referral&utm_campaign=WADA&utm_content=plugin+repo+description\" rel=\"nofollow ugc\">See our extension directory for more details.\u003C\u002Fa>\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Notifications:\u003C\u002Fstrong> Select event types or event severity levels (e.g. critical and high) for instant notification via email. You can choose whole user groups (e.g. administrators), individual WordPress users, or selected email addresses.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Offsite archive \u002F Replication:\u003C\u002Fstrong> To increase security and for backup purposes, you can forward the events for storage to an external logging provider.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Enforce password changes:\u003C\u002Fstrong> You can enable a policy that requires users (with specific user roles) to change their passwords regularly. For example, administrator accounts can be required to change their passwords at least every 90 days.\u003C\u002Fli>\n\u003Cli>\u003Cstrong>CSV export:\u003C\u002Fstrong> Export events, users, and login attempts to CSV files.\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Cp>\u003Ca href=\"https:\u002F\u002Fwpadminaudit.com\u002Ffeature-comparison\u002F?utm_source=wordpress.org&utm_medium=referral&utm_campaign=WADA&utm_content=plugin+repo+description\" rel=\"nofollow ugc\">Click here for more details and for a complete feature list\u003C\u002Fa>\u003C\u002Fp>\n","WP Admin Audit monitors the security-relevant activities on your site, keeps an event log and tells you when something out of the ordinary happens.",1000,13687,6,"2025-07-23T21:45:00.000Z","6.8.5","5.5",[19,20,120,121,23],"audit-trail","security-audit-log","https:\u002F\u002Fwpadminaudit.com\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fwp-admin-audit.1.2.16.zip",{"slug":125,"name":126,"version":127,"author":128,"author_profile":129,"description":130,"short_description":131,"active_installs":132,"downloaded":133,"rating":13,"num_ratings":13,"last_updated":134,"tested_up_to":117,"requires_at_least":135,"requires_php":136,"tags":137,"homepage":142,"download_link":143,"security_score":48,"vuln_count":13,"unpatched_count":13,"last_vuln_date":27,"fetched_at":28},"user-login-tracker","User Login Tracker","2.0.1","Irfan","https:\u002F\u002Fprofiles.wordpress.org\u002Firfanntk\u002F","\u003Cp>User Login Tracker helps WordPress site administrators monitor and analyze user login activity with powerful analytics and detailed reporting. Perfect for membership sites, e-commerce platforms, and any website that needs to track user engagement and activity patterns.\u003C\u002Fp>\n\u003Ch4>Key Features\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Visual Analytics Dashboard\u003C\u002Fstrong> – Interactive charts showing login trends and user activity patterns\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Real-time Login Tracking\u003C\u002Fstrong> – Automatically track every user login with detailed information\u003C\u002Fli>\n\u003Cli>\u003Cstrong>User Activity History\u003C\u002Fstrong> – View complete login history for any user with timestamps and IP addresses\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Dashboard Widget\u003C\u002Fstrong> – Quick overview of recent activity right on your WordPress dashboard\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Data Export\u003C\u002Fstrong> – Export login data in CSV format for external analysis\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Activity Status Indicators\u003C\u002Fstrong> – Instantly see which users are active or inactive\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Performance Optimized\u003C\u002Fstrong> – Fast, efficient database design that won’t slow down your site\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Mobile Responsive\u003C\u002Fstrong> – Works perfectly on all devices and screen sizes\u003C\u002Fli>\n\u003C\u002Ful>\n\u003Ch4>Why Choose User Login Tracker?\u003C\u002Fh4>\n\u003Cp>✅ \u003Cstrong>Easy Setup\u003C\u002Fstrong> – Install and start tracking immediately, no configuration required\u003Cbr \u002F>\n✅ \u003Cstrong>Lightweight\u003C\u002Fstrong> – Minimal impact on site performance with optimized code\u003Cbr \u002F>\n✅ \u003Cstrong>Secure\u003C\u002Fstrong> – Built with WordPress security best practices\u003Cbr \u002F>\n✅ \u003Cstrong>User-Friendly\u003C\u002Fstrong> – Clean, intuitive interface that anyone can use\u003Cbr \u002F>\n✅ \u003Cstrong>Comprehensive\u003C\u002Fstrong> – Track everything you need without overwhelming complexity\u003C\u002Fp>\n\u003Ch4>Perfect For\u003C\u002Fh4>\n\u003Cul>\n\u003Cli>\u003Cstrong>Membership Sites\u003C\u002Fstrong> – Monitor member engagement and login patterns\u003C\u002Fli>\n\u003Cli>\u003Cstrong>E-commerce Stores\u003C\u002Fstrong> – Track customer activity and identify trends\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Business Websites\u003C\u002Fstrong> – Understand user behavior and site usage\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Educational Platforms\u003C\u002Fstrong> – Monitor student login activity\u003C\u002Fli>\n\u003Cli>\u003Cstrong>Community Sites\u003C\u002Fstrong> – Track member participation and engagement\u003C\u002Fli>\n\u003C\u002Ful>\n","Monitor user login activity with advanced analytics, visual charts, and comprehensive tracking dashboard.",30,549,"2025-09-05T18:43:00.000Z","5.0","7.2",[138,139,22,140,141],"login-history","login-tracking","user-login","user-monitoring","","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fuser-login-tracker.2.0.1.zip",{"attackSurface":145,"codeSignals":256,"taintFlows":287,"riskAssessment":307,"analyzedAt":321},{"hooks":146,"ajaxHandlers":224,"restRoutes":238,"shortcodes":252,"cronEvents":253,"entryPointCount":254,"unprotectedCount":255},[147,153,158,163,167,172,176,181,186,192,197,199,203,206,209,213,218,221],{"type":148,"name":149,"callback":150,"file":151,"line":152},"action","rest_api_init","register_endpoints","includes\u002FAPI\u002Fclass-local.php",77,{"type":148,"name":154,"callback":155,"priority":13,"file":156,"line":157},"init","add_endpoint","includes\u002FAPI\u002Fclass-stalkfishapi.php",16,{"type":159,"name":160,"callback":161,"priority":13,"file":156,"line":162},"filter","query_vars","add_query_vars",17,{"type":148,"name":164,"callback":165,"priority":13,"file":156,"line":166},"parse_request","handle_api_requests",18,{"type":148,"name":168,"callback":169,"priority":11,"file":170,"line":171},"updated_option","callback","includes\u002FPipes\u002Fclass-settings-pipe.php",555,{"type":148,"name":173,"callback":173,"priority":11,"file":174,"line":175},"registered_taxonomy","includes\u002FPipes\u002Fclass-taxonomies-pipe.php",116,{"type":148,"name":177,"callback":178,"file":179,"line":180},"customize_save_after","callback_customize_save_after","includes\u002FPipes\u002Fclass-widgets-pipe.php",120,{"type":159,"name":182,"callback":183,"priority":11,"file":184,"line":185},"user_search_columns","add_display_name_search_columns","includes\u002FSettings\u002Fclass-exclude.php",136,{"type":159,"name":187,"callback":188,"priority":189,"file":190,"line":191},"sf_settings_tabs_array","add_settings_page",20,"includes\u002FSettings\u002Fclass-settings-page.php",33,{"type":148,"name":193,"callback":194,"file":195,"line":196},"plugins_loaded","closure","includes\u002Factivator.php",53,{"type":148,"name":193,"callback":194,"file":195,"line":198},63,{"type":148,"name":200,"callback":201,"priority":11,"file":202,"line":191},"stalkfish_enqueue_request","enqueue_request","includes\u002Fclass-logpipe.php",{"type":148,"name":154,"callback":154,"priority":82,"file":204,"line":205},"includes\u002Fclass-plugin.php",50,{"type":148,"name":207,"callback":207,"priority":11,"file":204,"line":208},"plugin_action_links",51,{"type":148,"name":210,"callback":211,"file":204,"line":212},"admin_notices","api_key_notice",141,{"type":148,"name":214,"callback":215,"file":216,"line":217},"admin_menu","anonymous","includes\u002Fregister-settings.php",35,{"type":148,"name":219,"callback":215,"file":216,"line":220},"wp_loaded",68,{"type":148,"name":154,"callback":222,"file":216,"line":223},"Stalkfish\\Settings\\create_options",128,[225,230,235],{"action":226,"nopriv":227,"callback":228,"hasNonce":227,"hasCapCheck":227,"file":184,"line":229},"sf_get_actions",false,"get_actions",25,{"action":231,"nopriv":227,"callback":232,"hasNonce":233,"hasCapCheck":233,"file":184,"line":234},"sf_get_users","get_users",true,26,{"action":236,"nopriv":227,"callback":215,"hasNonce":227,"hasCapCheck":227,"file":216,"line":237},"mock_log_request",156,[239,246],{"namespace":240,"route":241,"methods":242,"callback":244,"permissionCallback":245,"file":151,"line":71},"stalkfish\u002Fv1","\u002Fapi-key",[243],"GET","update_api_key","rest_permission_check",{"namespace":240,"route":247,"methods":248,"callback":249,"permissionCallback":250,"file":151,"line":251},"\u002Ftriggers",[243],"get_triggers","__return_true",103,[],[],5,3,{"dangerousFunctions":257,"sqlUsage":262,"outputEscaping":264,"fileOperations":50,"externalRequests":255,"nonceChecks":33,"capabilityChecks":266,"bundledLibraries":283},[258],{"fn":259,"file":179,"line":260,"context":261},"assert",466,"assert( $prev_sidebar_id !== $updated_sidebar_id );",{"prepared":13,"raw":13,"locations":263},[],{"escaped":265,"rawEcho":266,"locations":267},400,7,[268,270,273,275,277,279,281],{"file":156,"line":220,"context":269},"raw output",{"file":271,"line":272,"context":269},"includes\u002FSettings\u002Fclass-admin-settings.php",432,{"file":271,"line":274,"context":269},433,{"file":271,"line":276,"context":269},437,{"file":271,"line":278,"context":269},650,{"file":280,"line":162,"context":269},"includes\u002FSettings\u002Fviews\u002Fhtml-onboarding.php",{"file":280,"line":282,"context":269},84,[284],{"name":285,"version":27,"knownCves":286},"Select2",[],[288],{"entryPoint":289,"graph":290,"unsanitizedCount":59,"severity":306},"\u003Cclass-filterpipe> (includes\u002Fclass-filterpipe.php:0)",{"nodes":291,"edges":304},[292,298],{"id":293,"type":294,"label":295,"file":296,"line":297},"n0","source","$_SERVER","includes\u002Fclass-filterpipe.php",71,{"id":299,"type":300,"label":301,"file":296,"line":302,"wp_function":303},"n1","sink","call_user_func() [RCE]",107,"call_user_func",[305],{"from":293,"to":299,"sanitized":227},"high",{"summary":308,"deductions":309},"The \"stalkfish\" v1.2.1 plugin exhibits a mixed security posture. On the positive side, it demonstrates good practices by using prepared statements for all SQL queries and properly escaping a high percentage of its output. The absence of recorded CVEs and common vulnerability types in its history suggests a relatively stable past, potentially indicating diligent development or infrequent audits.  However, significant concerns arise from its attack surface.  With 5 total entry points, 3 are unprotected, including 2 AJAX handlers and 1 REST API route lacking permission callbacks. This presents a clear opportunity for unauthenticated attackers to interact with sensitive plugin functionalities.  Furthermore, the taint analysis reveals one flow with unsanitized paths, flagged as high severity. This indicates a potential for attackers to inject malicious data that is not properly handled, leading to unintended consequences or security breaches. The presence of the `assert` dangerous function, while only one instance, warrants attention as it can be misused. The plugin also performs external HTTP requests, which could be a vector if not carefully managed and authenticated. The bundled Select2 library, while common, could also be a potential point of vulnerability if it's an outdated or insecure version (though this is not explicitly stated in the data).",[310,312,314,317,319],{"reason":311,"points":11},"Unprotected AJAX handlers",{"reason":313,"points":254},"Unprotected REST API route",{"reason":315,"points":316},"High severity unsanitized taint flow",12,{"reason":318,"points":255},"Dangerous function 'assert' present",{"reason":320,"points":255},"External HTTP requests","2026-04-16T12:06:00.318Z",{"wat":323,"direct":333},{"assetPaths":324,"generatorPatterns":327,"scriptPaths":328,"versionParams":330},[325,326],"\u002Fwp-content\u002Fplugins\u002Fstalkfish\u002Fassets\u002Fcss\u002Fsettings.css","\u002Fwp-content\u002Fplugins\u002Fstalkfish\u002Fassets\u002Fjs\u002Fsettings.js",[],[329,326],"\u002Fwp-content\u002Fplugins\u002Fstalkfish\u002Fassets\u002Fjs\u002Fselect2\u002Fselect2.full.js",[331,332],"stalkfish\u002Fassets\u002Fcss\u002Fsettings.css?ver=","stalkfish\u002Fassets\u002Fjs\u002Fsettings.js?ver=",{"cssClasses":334,"htmlComments":336,"htmlAttributes":337,"restEndpoints":339,"jsGlobals":340,"shortcodeOutput":342},[335],"sf_settings",[],[338],"data-prefix",[],[341],"Stalkfish",[],{"error":233,"url":344,"statusCode":345,"statusMessage":346,"message":346},"http:\u002F\u002Flocalhost\u002Fapi\u002Fplugins\u002Fstalkfish\u002Fbundle",404,"no bundle for this plugin yet",{"slug":4,"current_version":6,"total_versions":348,"versions":349},13,[350,355,362,369,376,383,390,397,404,411,418,425,432],{"version":6,"download_url":25,"svn_tag_url":351,"released_at":27,"has_diff":227,"diff_files_changed":352,"diff_lines":27,"trac_diff_url":353,"vulnerabilities":354,"is_current":233},"https:\u002F\u002Fplugins.svn.wordpress.org\u002Fstalkfish\u002Ftags\u002F1.2.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fstalkfish%2Ftags%2F1.2.0&new_path=%2Fstalkfish%2Ftags%2F1.2.1",[],{"version":356,"download_url":357,"svn_tag_url":358,"released_at":27,"has_diff":227,"diff_files_changed":359,"diff_lines":27,"trac_diff_url":360,"vulnerabilities":361,"is_current":227},"1.2.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstalkfish.1.2.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fstalkfish\u002Ftags\u002F1.2.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fstalkfish%2Ftags%2F1.1.2&new_path=%2Fstalkfish%2Ftags%2F1.2.0",[],{"version":363,"download_url":364,"svn_tag_url":365,"released_at":27,"has_diff":227,"diff_files_changed":366,"diff_lines":27,"trac_diff_url":367,"vulnerabilities":368,"is_current":227},"1.1.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstalkfish.1.1.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fstalkfish\u002Ftags\u002F1.1.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fstalkfish%2Ftags%2F1.1.1&new_path=%2Fstalkfish%2Ftags%2F1.1.2",[],{"version":370,"download_url":371,"svn_tag_url":372,"released_at":27,"has_diff":227,"diff_files_changed":373,"diff_lines":27,"trac_diff_url":374,"vulnerabilities":375,"is_current":227},"1.1.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstalkfish.1.1.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fstalkfish\u002Ftags\u002F1.1.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fstalkfish%2Ftags%2F1.1.0&new_path=%2Fstalkfish%2Ftags%2F1.1.1",[],{"version":377,"download_url":378,"svn_tag_url":379,"released_at":27,"has_diff":227,"diff_files_changed":380,"diff_lines":27,"trac_diff_url":381,"vulnerabilities":382,"is_current":227},"1.1.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstalkfish.1.1.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fstalkfish\u002Ftags\u002F1.1.0\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fstalkfish%2Ftags%2F1.0.7&new_path=%2Fstalkfish%2Ftags%2F1.1.0",[],{"version":384,"download_url":385,"svn_tag_url":386,"released_at":27,"has_diff":227,"diff_files_changed":387,"diff_lines":27,"trac_diff_url":388,"vulnerabilities":389,"is_current":227},"1.0.7","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstalkfish.1.0.7.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fstalkfish\u002Ftags\u002F1.0.7\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fstalkfish%2Ftags%2F1.0.6&new_path=%2Fstalkfish%2Ftags%2F1.0.7",[],{"version":391,"download_url":392,"svn_tag_url":393,"released_at":27,"has_diff":227,"diff_files_changed":394,"diff_lines":27,"trac_diff_url":395,"vulnerabilities":396,"is_current":227},"1.0.6","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstalkfish.1.0.6.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fstalkfish\u002Ftags\u002F1.0.6\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fstalkfish%2Ftags%2F1.0.5&new_path=%2Fstalkfish%2Ftags%2F1.0.6",[],{"version":398,"download_url":399,"svn_tag_url":400,"released_at":27,"has_diff":227,"diff_files_changed":401,"diff_lines":27,"trac_diff_url":402,"vulnerabilities":403,"is_current":227},"1.0.5","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstalkfish.1.0.5.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fstalkfish\u002Ftags\u002F1.0.5\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fstalkfish%2Ftags%2F1.0.4&new_path=%2Fstalkfish%2Ftags%2F1.0.5",[],{"version":405,"download_url":406,"svn_tag_url":407,"released_at":27,"has_diff":227,"diff_files_changed":408,"diff_lines":27,"trac_diff_url":409,"vulnerabilities":410,"is_current":227},"1.0.4","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstalkfish.1.0.4.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fstalkfish\u002Ftags\u002F1.0.4\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fstalkfish%2Ftags%2F1.0.3&new_path=%2Fstalkfish%2Ftags%2F1.0.4",[],{"version":412,"download_url":413,"svn_tag_url":414,"released_at":27,"has_diff":227,"diff_files_changed":415,"diff_lines":27,"trac_diff_url":416,"vulnerabilities":417,"is_current":227},"1.0.3","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstalkfish.1.0.3.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fstalkfish\u002Ftags\u002F1.0.3\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fstalkfish%2Ftags%2F1.0.2&new_path=%2Fstalkfish%2Ftags%2F1.0.3",[],{"version":419,"download_url":420,"svn_tag_url":421,"released_at":27,"has_diff":227,"diff_files_changed":422,"diff_lines":27,"trac_diff_url":423,"vulnerabilities":424,"is_current":227},"1.0.2","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstalkfish.1.0.2.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fstalkfish\u002Ftags\u002F1.0.2\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fstalkfish%2Ftags%2F1.0.1&new_path=%2Fstalkfish%2Ftags%2F1.0.2",[],{"version":426,"download_url":427,"svn_tag_url":428,"released_at":27,"has_diff":227,"diff_files_changed":429,"diff_lines":27,"trac_diff_url":430,"vulnerabilities":431,"is_current":227},"1.0.1","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstalkfish.1.0.1.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fstalkfish\u002Ftags\u002F1.0.1\u002F",[],"https:\u002F\u002Fplugins.trac.wordpress.org\u002Fchangeset?old_path=%2Fstalkfish%2Ftags%2F1.0.0&new_path=%2Fstalkfish%2Ftags%2F1.0.1",[],{"version":433,"download_url":434,"svn_tag_url":435,"released_at":27,"has_diff":227,"diff_files_changed":436,"diff_lines":27,"trac_diff_url":27,"vulnerabilities":437,"is_current":227},"1.0.0","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fstalkfish.1.0.0.zip","https:\u002F\u002Fplugins.svn.wordpress.org\u002Fstalkfish\u002Ftags\u002F1.0.0\u002F",[],[]]