Plugins DatabasePlugins Database logo
Back to plugins
WordPress

Actions

DownloadAuthor pageSee on WordPress

Plugin info

Total downloads: 66,945
Active installs: 2,000
Total reviews: 15
Average rating: 5
Support threads opened: 0
Support threads resolved: 0 (0%)
Available in: 4 language(s)
Contributors: 2
Last updated: 11/11/2025 (49 days ago)
Added to WordPress: 7/19/2017 (8 years old)
Minimum WordPress version: 5.0
Tested up to WordPress version: 6.8.3
Minimum PHP version: f

Maintenance & Compatibility

Maintenance score

Actively maintained • Last updated 49 days ago • 15 reviews

63/100

Is Log HTTP Requests abandoned?

Likely maintained (last update 49 days ago).

Compatibility

Requires WordPress: 5.0
Tested up to: 6.8.3
Requires PHP: f

Ratings

15
0
0
0
0See all reviews

Developers

Matt Gibbs (Owner)5Matt Gibbs3

Languages

Spanish (Spain)32,360Polish9,087Spanish (Chile)8,024

Similar & Alternatives

Explore plugins with similar tags, and compare key metrics like downloads, ratings, updates, support, and WP/PHP compatibility.

HTTP Requests Manager
Rating 5.0/5 (8 reviews)Active installs 1,000
Compare
Inspect HTTP Requests
Rating 5.0/5 (2 reviews)Active installs 100
Compare
See more alternatives to Log HTTP Requests

Description

Log and view all WP HTTP requests

How long do [core / plugin / theme] update checks take to run? What data about my site is being sent out? What about all those ajax requests? The answers to these questions are just a few clicks away.

This plugin logs all WP_HTTP requests and displays them in a table listing for easy viewing. It also stores the runtime of each HTTP request.

Available Hooks

Customize the length (in days) before older log items are removed:

add_filter( 'lhr_expiration_days', function( $days ) {
    return 7; // default = 1
});

Don’t log items from a specific hostname:

add_filter( 'lhr_log_data', function( $data ) {
    if ( false !== strpos( $data['url'], 'wordpress.org' ) ) {
        return false;
    }
    return $data;
});

In the above example, the $data array keys correspond to columns within the lhr_log database table.

Important Links

Installation

  1. Download and activate the plugin.
  2. Browse to Tools > Log HTTP Requests to view log entries.

Frequently Asked Questions

No FAQ available

Review feed

con
11/23/2018

Excellent.

Exactly what you need when you debug API requests. Thanks!
Michael Nelson
6/5/2019

Really helpful!

Works exactly as advertised so far. Really helpful for figuring out if any plugins/themes are phoning home unnecessarily. FYI after you've used this plugin to find out who's calling where, you can add "define('WP_HTTP_BLOCK_EXTERNAL', true);" to your wp-config.php to block ANY requests outwards. You'll probably want to also whitelist domains you trust with the WP_ACCESSIBLE_HOSTS parameter. E.g. if you're polling data from instagram or youtube api, and what not. (Credit to Markus Philipp Stefanko for those tips)
Blocksera
9/12/2019

Thank You!

This plugin has become indispensable for plugin development particularly debugging API requests. Thank you very much.
Andrew Wilder
12/6/2020

My favorite troubleshooting tool

The Log HTTP Requests plugin might be my favorite troubleshooting tool of all time. It's helped me pinpoint intermittent issues that we never would have seen otherwise. THANK YOU, FacetWP! :)
Mansour JabinPour - منصور جبین پور
8/14/2021

Bravo 😍

The plugin is very good and useful and I am very grateful to its developer.

Screenshots

No screenshots available

Changelog

1.5.0

  • Security: Fixed SQL injection vulnerabilities in cleanup() and capture_request() methods
  • Security: Added prepared statements for all database queries
  • Security: Added input sanitization for POST/GET data with proper type checking
  • Security: Added proper output escaping throughout templates
  • Security: Fixed potential XSS vulnerability in JavaScript table rendering
  • Security: Improved data validation with absint() and floatval() for numeric values
  • Security: Replaced json_encode() with wp_json_encode() for better security
  • Security: Added capability check to settings page for better access control
  • Improvement: Updated WordPress compatibility to 6.8
  • Improvement: Added text domain for internationalization support
  • Improvement: Modernized code to follow WordPress coding standards
  • Improvement: Replaced deprecated current_time(‘timestamp’) with modern WordPress functions
  • Improvement: Improved database table creation using dbDelta() and get_charset_collate()

= 1.4.1
* Fixed PHP8 deprecation notices

1.4

  • Added extra ajax role validation (props pluginvulnerabilities.com)

1.3.2

  • Escaped URL field to prevent possible XSS (props Bishop Fox)

1.3.1

  • Ensured compatibility with WP 5.8

1.3

  • Minor PHP cleanup
  • Ensured compatibility with WP 5.7

1.2

  • Moved “Log HTTP Requests” to the Tools menu (props @aaemnnosttv)
  • Added “Status” column to show HTTP response code (props @danielbachhuber)
  • Added prev/next browsing to the detail modal (props @marcissimus)
  • Added keyboard support (up, down, esc) to the detail modal (props @marcissimus)
  • Added raw timestamp to “Date Added” column on hover
  • Added hook docs to the readme

1.1

  • Added lhr_log_data hook to customize logged data (return FALSE to skip logging)
  • Added lhr_expiration_days hook

1.0.4

  • Minor styling tweak

1.0.3

  • Better visibility for long URLs

1.0.2

  • Minor design tweaks
  • Replaced json_encode with wp_send_json

1.0.1

  • Tested compatibility against WP 4.9.4

1.0.0

  • Initial release
Back to plugins