Does Break Out of Frames have any unpatched vulnerabilities?

No. All known vulnerabilities in Break Out of Frames have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Break Out of Frames compatible with WordPress 4.2.39?

According to WordPress.org data, Break Out of Frames 0.1 has been tested up to WordPress 4.2.39. Check the plugin's changelog for the latest compatibility information.

How often is Break Out of Frames updated?

Break Out of Frames was last updated on Apr 20, 2015. Frequent updates are generally a positive security signal.

What is Break Out of Frames's security score?

Break Out of Frames has a WP-Safety security score of 85/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Break Out of Frames Security & Risk Analysis

wordpress.org/plugins/break-out-of-frames

This Framebreaker will Avoid your blog being framed by some other web site and good for wallpaper blog to increase traffic.

80 active installs v0.1 PHP + WP 2.0.2+ Updated Apr 20, 2015

disable-iframeframeframebreakeriframeno-frames

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Break Out of Frames Safe to Use in 2026?

Generally Safe

Score 85/100

Break Out of Frames has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 10yr ago

Risk Assessment

The 'break-out-of-frames' plugin version 0.1 exhibits a generally positive security posture based on the provided static analysis. There are no identified dangerous functions, SQL queries are all prepared, and there are no file operations or external HTTP requests. Crucially, the attack surface appears to be zero, with no AJAX handlers, REST API routes, shortcodes, or cron events, suggesting a minimal impact surface. The lack of any historical vulnerabilities further contributes to this positive assessment, indicating a consistent track record of security.

However, a significant concern arises from the output escaping. With one total output and 0% properly escaped, this represents a critical vulnerability. Any user-supplied data that is outputted by this plugin without proper escaping is susceptible to Cross-Site Scripting (XSS) attacks. While the attack surface is small, this single unescaped output presents a clear and actionable risk. The absence of nonce and capability checks, though less concerning due to the lack of an attack surface, still points to a lack of robust security practices that would be essential if the plugin were to evolve or gain new functionalities.

Key Concerns

Unescaped output

Vulnerabilities

None known

Break Out of Frames Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 16, 2026

Break Out of Frames Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

0 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

0% escaped1 total outputs

Attack Surface

Break Out of Frames Attack Surface

Entry Points0

Unprotected0

WordPress Hooks 1

actionwp_headbreak-out-of-frames.php:32

Maintenance & Trust

Break Out of Frames Maintenance & Trust

Maintenance Signals

WordPress version tested4.2.39

Last updatedApr 20, 2015

PHP min version

Downloads9K

Community Trust

Rating80/100

Number of ratings8

Active installs80

Alternatives

Break Out of Frames Alternatives

iframe

[iframe src="http://www.youtube.com/embed/7_nAZQt9qu0" width="100%" height="500"] shortcode

70K 6 CVEs

Advanced iFrame

advanced-iframe

Include content the way YOU like in an iframe that can hide and modify elements, does auto-height, forward parameters and does many, many more...

40K 1 unpatched

BJ Lazy Load

bj-lazy-load

Lazy loading for images and iframes makes your site load faster and saves bandwidth. Uses no external JS libraries and degrades gracefully for non-js …

20K 1 CVE

Embed Privacy

embed-privacy

100

Embed Privacy prevents the loading of embedded external content and allows your site visitors to opt-in.

10K 1 CVE

Simple Iframe

simple-iframe

Easily insert iframes inside the block editor.

7K 1 CVE

Developer Profile

Break Out of Frames Developer Profile

ewwink

1 plugin · 80 total installs

trust score

Avg Security Score

85/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Break Out of Frames

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

HTML / DOM Fingerprints

Shortcode Output

<script language="JavaScript" type="text/javascript">
/*<![CDATA[*/
if (top.location != self.location) top.location.replace(self.location);
/*]]>*/
</script>

FAQ