The WordPress Admin Swiss Army Knife
One Plugin to Replace Them All
Stop installing 20+ plugins for basic features. Must-Have Tweaks combines security, development tools, database management, code snippets, role editing, email logging and 45+ essential tools — in a single, lightweight plugin.
- Features
- FAQ
- Docs
Get Must-Have Tweaks-
All Products
Must-Have PackSave thousands of dollars with our fantastic plugin bundle! Get UNLIMITED ACCESS to all our plugins with a monthly subscription.
Must-Have AnalyticsUnlock actionable insights with Must-Have Analytics, a privacy-friendly, cookieless-ready analytics suite built for WordPress. Optimised for speed, accuracy, and GDPR compliance from the ground up.
Must-Have Cookie CMPEnsure GDPR compliance for your site with our UNLIMITED Content Management Platform, offering geolocation, multilingual options, and advanced in-app browser support.
Swift PerformanceThe most powerful and innovative all-in-one cache & optimization plugin on the market, featuring automatic setup and ready-to-use functionality right out of the box.- Must-Have TweaksTake full control of WordPress — disable the junk, add missing features, and fine-tune everything without writing code.
BugMonitorA unique, proactive website monitoring plugin. Stay ahead of problems, fix issues before they impact users.
WP ShiftyThe best WordPress cleanup plugin on the market, featuring a live editor and many cool features
WPACPThe only content protector on the market with an innovative invisible watermark. Make your images unstealable without disrupting the user experience!
Must-Have RedirectStop losing visitors! Must-Have Redirects automatically fixes typos, outdated URLs, and broken links—seamlessly guiding users to the right content instead of a 404 page.
Must-Have Captcha Block bots without bothering users! Smart, invisible protection that stops spam and keeps forms friction-free.
Get Must-Have Tweaks
Must-Have Pack
Must-Have Analytics
Must-Have Cookie CMP
Swift Performance
BugMonitor
WP Shifty
WPACP
Must-Have Redirect
Must-Have CaptchaStop the Plugin Bloat
You don't need 20+ plugins for basic WordPress functionality.
Every extra plugin adds database queries, potential conflicts, and security risks. Must-Have Tweaks consolidates the most common admin tools into a single, well-optimized package — no bloat, no conflicts, no hassle.
Everything You Need. Nothing You Don't.
45+ features across 9 categories, all in one plugin.
Login & Security
- Login Page Customizer
- 2FA Authentication (Email OTP & TOTP)
- Biometric Login (Passkeys)
- Magic Link Login
- Brute-Force Protection (Login Limiter)
- Prevent user enumeration
- User Switching
- Login/Logout Redirects
AI-Powered Snippet Manager
- PHP, JS, CSS, HTML snippets
- AI code generation (Claude, OpenAI, Gemini)
- AI autocomplete as you type
- Safe mode & auto-disable on fatal errors
- Shortcode support
- Export/Import snippets
File Manager
- Browse, edit, upload files from admin
- Code editor with syntax highlighting
- PHP save safety check (auto-revert on 500)
- Zip/Unzip, chmod, drag & drop
- Context menu, icon/list views
- Folder upload & conflict resolution
- Hidden files toggle, keyboard shortcuts
Role & Capability Editor
- Create, clone, rename, delete roles
- Per-role and per-user capability editing
- Content, widget & nav menu visibility
- Import/Export roles
Email & SMTP
- Custom SMTP configuration
- Email logging with search & filters
- View, resend, delete logged emails
- Open tracking with pixel
- Disable specific WordPress emails
- SMTP test email
Performance & Cleanup
- Disable XML-RPC, embeds, emoji, RSS
- Remove query strings & WP version
- Heartbeat control
- Disable jQuery Migrate
- Disable RSS feeds & self-pingbacks
- Disable all updates (core, plugins, themes)
Media Enhancements
- Media folder organizer
- Replace media files in-place
- Image sizes panel
- Auto WebP conversion on upload
- Custom JPEG quality
- CDN URL rewrite for static assets
- Additional MIME type support
User Management
- User activity logging (20+ event types)
- Temporary user accounts with expiry
- Local avatar upload (WebP support)
- Hide admin bar per role
- Disable author archives
Database & Cron
- Database Manager
- Browse, search, edit, insert rows
- SQL query editor
- Table export (CSV & SQL) / import
- Database cleanup & optimization
- WP Cron Manager (run, delete events)
Admin Area
- 12 admin color skins + custom colors
- Custom admin bar logo
- Organize admin notices into panel
- Admin menu manager (reorder, rename, hide)
- Web CLI — run WP-CLI commands from browser
- Disable admin email verification
Content
- Classic Editor toggle
- Disable comments per post type
- Post/Page duplication
- Public preview for drafts
- External links in new tab
- Revision limit control
- Missed schedule fix
Other
- Maintenance mode with custom page
- Custom 404 page
- Settings export/import
- Full WP-CLI support
- 12+ developer filters & actions
Login & Security
Protect your site with multiple layers of authentication — without installing a single security plugin. Redesign the login page with a visual customizer, add Two-Factor Authentication via email OTP or authenticator app, and let users log in with Passkeys using fingerprint or Face ID.
Users can also receive a Magic Link by email for passwordless login. A built-in Login Limiter blocks IPs after too many failed attempts, and Hidden Login Errors show the same message for wrong username or password — preventing attackers from guessing which accounts exist.
User & Role Management
A complete Role Editor that lets you create, clone, rename and delete roles with full capability control. Edit capabilities per-role or per-user, and restrict content, widgets and navigation menus by role. Import and export role configurations as JSON.
Track everything with Activity Logging covering 20+ event types — logins, page visits, post edits, plugin changes and more. Create Temporary Users with automatic expiry for clients or contractors, and let users upload a Local Avatar directly from their profile.
AI-Powered Snippet Manager
Manage PHP, JavaScript, CSS and HTML snippets with a full code editor. Describe what you need in plain English and let AI generate the code — powered by Claude, OpenAI or Gemini. As you type, AI autocomplete suggests the next lines in real time.
If a PHP snippet causes a fatal error, Safe Mode automatically disables it and records the error — your site stays online. Test changes safely with Preview Mode that only runs for administrators, and register snippets as shortcodes for use in posts and pages.
File Manager
Browse, edit and upload files directly from your WordPress admin — no FTP or cPanel needed. The built-in code editor supports syntax highlighting for PHP, JS, CSS, HTML, JSON and more.
When you save a PHP file, a Safety Check automatically tests the result and reverts your changes if the site returns an error. Upload files with drag & drop, create ZIP archives, manage permissions with a visual chmod editor, and navigate with a right-click context menu — just like a desktop file manager.
Database Manager
A phpMyAdmin-style database tool built right into WordPress. Browse any table with sortable, paginated results and edit cells inline with a click. Run arbitrary SQL queries in the built-in editor, and search across all columns instantly.
Export individual tables as CSV or SQL, import SQL files, and run database cleanup to remove expired transients, orphaned meta, trashed posts and spam comments. The built-in Cron Manager lets you inspect, run and delete scheduled WordPress events.
Email & SMTP
Route all WordPress emails through your own SMTP server with full configuration for host, port, encryption and authentication. Every outgoing email is logged automatically — search by recipient, subject or date, view the full HTML content, and resend with one click.
Enable Open Tracking to see which emails were opened and when, using an invisible tracking pixel. Selectively disable default WordPress emails you don't need — new user notifications, password change alerts, update emails and more.
Media & Performance
Organize your media library with a folder system using drag & drop. Uploaded JPEG and PNG images are automatically converted to WebP for smaller file sizes. Need to update an image? Replace media in-place without breaking existing links. Serve static assets faster with CDN URL Rewrite — enter your CDN host and all CSS, JS, images and fonts are automatically rewritten on the frontend.
On the performance side, disable XML-RPC, embeds, emoji scripts, RSS feeds and other bloat with a single toggle. Control the Heartbeat API frequency, remove jQuery Migrate from the frontend, strip version query strings, and disable all updates when you need a stable environment.
Admin Area & Content
Choose from 12 admin color skins or create your own with custom color pickers. Add your company logo to the admin bar, tame the clutter by collecting all admin notices into a collapsible panel, and use the Admin Menu Manager to drag & drop reorder, rename or hide any menu item. The Web CLI lets you run WP-CLI commands straight from the browser — press Ctrl+` to open a terminal that works with every plugin's CLI commands.
For content, restore the Classic Editor, disable comments on any post type, duplicate pages with one click, and share drafts via a secure Public Preview link. Set up a Maintenance Mode page with a custom HTTP status code, define a Custom 404 page, and manage everything from the command line with full WP-CLI support.
Replace 20+ Plugins with One
Lighter site. Fewer conflicts. One dashboard to rule them all.
Get Must-Have Tweaks NowSimple, Transparent Pricing
One plugin, all 45+ features. No upsells, no feature gates.
Unlimited
- Unlimited websites
- All 45+ features
- AI snippet editor
- Updates & support
14-day money-back guarantee. No questions asked.
Frequently Asked Questions
No. Must-Have Tweaks only loads the features you enable. Disabled features add zero overhead. In fact, using one well-coded lightweight plugin and the performance tools can make your site even faster.
Yes. Must-Have Tweaks can replace Code Snippets, WP Mail SMTP, User Role Editor, WP File Manager, Classic Editor, Duplicate Post, Heartbeat Control, WebP converter, and many more. Each feature is independently toggleable.
Yes. PHP snippets have a safe mode and automatic error detection — if a snippet causes a fatal error, it is automatically disabled. You can also use the preview status to test snippets before activating them. The AI uses your own API key and never stores your code.
Yes. Must-Have Tweaks works with all WordPress themes — classic, block-based, and page builders like Elementor, Beaver Builder, and Bricks.
Deactivating the plugin does not delete any data. Snippets, logs, settings, and roles are preserved. On uninstall, you can choose whether to keep or remove data for snippets and avatars individually.
The plugin works on individual sites within a multisite network. Network-wide activation and settings are on our roadmap.
No. The file manager, snippet editor, and role editor are restricted to users with the manage_options capability (administrators) for security reasons.
Claude (Anthropic), OpenAI (GPT), and Google Gemini. You bring your own API key. Each provider has separate configuration for large (code generation) and small (autocomplete) models.
Must-Have Tweaks is a premium plugin. We offer a 14-day money-back guarantee so you can try it risk-free.
Yes. All licenses include priority email support and access to our documentation. The Must-Have Pack includes dedicated support across all included plugins.
Ready to Simplify Your WordPress?
Join thousands of WordPress professionals who chose one plugin over twenty.
Get Must-Have Tweaks