The WordPress security and auditing plugin WP Security Audit Log generates a WordPress security alert for each activity it logs. WordPress security alerts can be viewed from the Audit Log Viewer, which is installed with the plugin itself. Refer to the below tables for more information about each WordPress security alert. Click on any of the index links below to access directly a specific category of WordPress Security Alerts.

WordPress Blog Posts Activity Security Alerts

The below table contains a list of WordPress security alerts that can be generated by WP Security Audit Log plugin while monitoring WordPress blog posts activity.

Alert Code
Type
Description
2000NOTICEUser created a new blog post and saved it as draft
2001NOTICEUser published a blog post
2002NOTICEUser modified a published blog post
2003NOTICEUser modified a draft blog post
2008NOTICEUser permanently deleted a blog post from the trash
2012WARNINGUser moved a blog post to the trash
2014HIGHUser restored a blog post from trash
2016NOTICEUser changed blog post category
2017NOTICEUser changed blog post URL
2019NOTICEUser changed blog post author
2021NOTICEUser changed blog post status
2023NOTICEUser created new category
2024WARININGUser deleted category
2025WARNINGUser changed the visibility of a blog post
2027NOTICEUser changed the date of a blog post

WordPress Pages Activity Security Alerts

The below table contains a list of WordPress security alerts that can be generated by WP Security Audit Log plugin while monitoring WordPress pages activity.

Alert Code
Type
Description
2004NOTICEUser created a new WordPress page and saved it as draft
2005NOTICEUser published a WorPress page
2006NOTICEUser modified a published WordPress page
2007NOTICEUser modified a draft WordPress page
2009NOTICEUser permanently deleted a page from the trash
2013WARNINGUser moved WordPress page to the trash
2015HIGHUser restored a WordPress page from trash
2018NOTICEUser changed page URL
2020NOTICEUser changed page author
2022NOTICEUser changed page status
2026WARNINGUser changed the visibility of a page post
2028NOTICEUser changed the date of a page post

WordPress Custom Posts Activity Security Alerts

The below table contains a list of WordPress security alerts that can be generated by WP Security Audit Log plugin when monitoring WordPress custom posts activity.

Alert Code
Type
Description
2029NOTICEUser created a new post with custom post type and saved it as draft
2030NOTICEUser published a post with custom post type
2031NOTICEUser modified a post with custom post type
2032NOTICEUser modified a draft post with custom post type
2033WARNINGUser permanently deleted post with custom post type
2034WARNINGUser moved post with custom post type to trash
2035HIGHUser restored post with custom post type from trash
2036NOTICEUser changed the category of a post with custom post type
2037NOTICEUser changed the URL of a post with custom post type
2038NOTICEUser changed the author or post with custom post type
2039NOTICEUser changed the status of post with custom post type
2040WARNINGUser changed the visibility of a post with custom post type
2041NOTICEUser changed the date of post with custom post type

WordPress Widgets Activity Security Alerts

The below table contains a list of WordPress security alerts that can be generated by WP Security Audit Log plugin while monitoring WordPress widgets activity.

Alert Code
Type
Description
2042HIGHUser added a new widget
2043WARNINGUser modified a widget
2044HIGHUser deleted widget
2045NOTICEUser moved widget

WordPress Users Activity Security Alerts

The below table contains a list of WordPress security alerts that can be generated by WP Security Audit Log plugin while monitoring WordPress user activity.

Alert Code
Type
Description
1000NOTICEUser logs in
1001NOTICEUser Logs out
1002WARNINGFailed login detected
2010NOTICEUser uploaded a file to the uploads directory
2011WARNINGUser deleted a file from the uploads directory

WordPress Users Profiles Activity Security Alerts

The below table contains a list of WordPress security alerts that can be generated by WP Security Audit Log plugin while monitoring WordPress user profiles changes.

Alert Code
Type
Description
4000HIGHA new user was created on WordPress
4001HIGHA user created another WordPress user
4002HIGHThe role of a user was changed by another WordPress user
4003HIGHUser has changed his or her password
4004HIGHA user changed another user's password
4005NOTICEUser changed his or her email address
4006NOTICEA user changed another user's email address
4007HIGHA user was deleted by another user

WordPress Plugin Activity Security Alerts

The below table contains a list of WordPress security alerts that can be generated by WP Security Audit Log plugin while monitoring WordPress plugins activity.

Alert Code
Type
Description
5001HIGHUser activated a WordPress plugin
5002HIGHUser deactivated a WordPress plugin
5000HIGHUser installed a plugin
5003HIGHUser uninstalled a plugin
5004WARNINGUser upgraded a plugin

WordPress Settings & System Activity Security Alerts

The below table contains a list of WordPress security alerts that can be generated by WP Security Audit Log plugin while monitoring WordPress settings and system activity.

Alert Code
Type
Description
6000NOTICEEvents automatically pruned by system
6001HIGHOption Anyone Can Register in WordPress settings changed
6002HIGHNew User Default Role changed
6003HIGHWordPress Administrator Notification email changed

WordPress Multisite Network Activity Security Alerts

The below table contains a list of WordPress security alerts that can be generated by WP Security Audit Log plugin while monitoring WordPress Multisite network installations.

Alert Code
Type
Description
4008HIGHUser granted Super Admin privileges
4009HIGHUser revoked from Super Admin privileges
4010HIGHExisting user added to a site
4011HIGHUser removed from site
4012HIGHNew network user created
7000HIGHNew site added on network
7001HIGHExisting site archived
7002HIGHArchived site has been unarchived
7003HIGHDeactivated site has been activated
7004HIGHSite has been deactivated
7005HIGHExisting site deleted from network

Monitoring Activity on your WordPress Blog or Website

We are always working on improving WP Security Audit Log WordPress security plugin to generate more WordPress security alerts by logging and keeping an audit of much more WordPress and WordPress users activity. Get in touch with us and send us your feedback on plugins@wpwhitesecurity.com. If you would like to monitor a particular activity on your WordPress blog or website sent us an email on plugins@wpwhitesecurity.com.

Is your WordPress Hacker Proof?

WP White Security specializes in WordPress security services such as malware removal, security hardening and security audits. For more information about our services, refer to our Security Services page.

Security Services Tel: +44 20 3588 0327