Does Orphans have any unpatched vulnerabilities?

No published vulnerabilities and no findings under coordinated disclosure as of the latest data update. Always keep the plugin updated to the latest version.

Is Orphans compatible with WordPress 6.8.5?

According to WordPress.org data, Orphans 3.4.1 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Orphans compatible with PHP 8.0+?

Orphans requires PHP 8.0 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

How often is Orphans updated?

Orphans was last updated on Oct 14, 2025. Frequent updates are generally a positive security signal.

What is Orphans's security score?

Orphans has a WP-Safety security score of 100/100. This score is computed from CVE history, patch response time, developer trust signals, and plugin maintenance activity.

Orphans Security & Risk Analysis

wordpress.org/plugins/sierotki

Supports the grammar rule for orphan words at the end of a line.

40K active installs v3.4.1 PHP 8.0+ WP 6.0+ Updated Oct 14, 2025

czechgrammarorphanpolishtypography

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Orphans Safe to Use in 2026?

Generally Safe

Score 100/100

Orphans has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 7mo ago

Risk Assessment

The plugin "sierotki" v3.4.1 demonstrates a generally strong security posture, with several good practices evident in the static analysis. The complete absence of known CVEs and a history free of vulnerabilities further reinforces this positive outlook. The code exhibits a low attack surface, with only one AJAX handler and no other common entry points like REST API routes or shortcodes. Crucially, this single AJAX handler is protected by authentication checks, which is a significant security control. The plugin also adheres to secure coding practices by utilizing prepared statements for all SQL queries and properly escaping a very high percentage of output. Nonce and capability checks are also implemented, indicating an awareness of WordPress security standards.

Key Concerns

Only one AJAX handler identified
No REST API routes
No shortcodes
No cron events
One AJAX handler is authenticated
100% of SQL queries use prepared statements
96% of outputs are properly escaped
One file operation detected
No external HTTP requests
Nonce checks implemented
Capability checks implemented
No taint flows with unsanitized paths
No known CVEs in vulnerability history
Bundled Select2 library

Vulnerabilities

None known

Orphans Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Version History

Orphans Release Timeline

v3.4.1Current

v3.4.0

v3.3.9

v3.3.8

v3.3.7

v3.3.6

v3.3.5

v3.3.4

v3.3.3

v3.3.2

v3.3.1

v3.3.0

v3.2.9

v3.2.8

v3.2.7

v3.2.6

v3.2.5

v3.2.4

v3.2.3

v3.2.2

Code Analysis

Analyzed Mar 16, 2026

Orphans Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

255 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Select2

Output Escaping

96% escaped266 total outputs

Data Flows · Security

All sanitized

Data Flow Analysis

2 flows

update_taxonomy_options (includes\iworks\options\options.php:1484)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

Orphans Attack Surface

Entry Points1

Unprotected0

AJAX Handlers 1

authwp_ajax_iworks_rate_buttonincludes\iworks\rate\rate.php:113

WordPress Hooks 47

actioninitincludes\iworks\class-iworks-orphan.php:111

actioninitincludes\iworks\class-iworks-orphan.php:112

actionadmin_initincludes\iworks\class-iworks-orphan.php:113

actionload-appearance_page_iworks_orphan_indexincludes\iworks\class-iworks-orphan.php:114

actionload-appearance_page_iworks_orphan_indexincludes\iworks\class-iworks-orphan.php:115

actionplugins_loadedincludes\iworks\class-iworks-orphan.php:116

actionplugins_loadedincludes\iworks\class-iworks-orphan.php:117

actionupdate_option_WPLANGincludes\iworks\class-iworks-orphan.php:123

filterorphan_replaceincludes\iworks\class-iworks-orphan.php:127

filteriworks_rate_notice_logo_styleincludes\iworks\class-iworks-orphan.php:131

filterorphan_get_termsincludes\iworks\class-iworks-orphan.php:137

filterindex_iworks_orphan_post_type_dataincludes\iworks\class-iworks-orphan.php:143

filtergettextincludes\iworks\class-iworks-orphan.php:509

filterwoocommerce_short_descriptionincludes\iworks\class-iworks-orphan.php:587

filtersingle_term_titleincludes\iworks\class-iworks-orphan.php:595

filtersingle_cat_titleincludes\iworks\class-iworks-orphan.php:597

filtersingle_tag_titleincludes\iworks\class-iworks-orphan.php:600

filteriworks_orphan_replaceincludes\iworks\class-iworks-orphan.php:603

filterget_post_metadataincludes\iworks\class-iworks-orphan.php:609

filtervc_shortcode_outputincludes\iworks\class-iworks-orphan.php:615

filtergdlr_core_escape_contentincludes\iworks\class-iworks-orphan.php:621

filtermfn_builder_items_showincludes\iworks\class-iworks-orphan.php:642

filteret_pb_module_contentincludes\iworks\class-iworks-orphan.php:648

filterget_post_metadataincludes\iworks\class-iworks-orphan.php:776

actionshutdownincludes\iworks\class-iworks-orphan.php:1053

actioninitincludes\iworks\integrations\class-iworks-orphans-integration-advanced-custom-fields.php:37

filterorphans/etc/config/integrationsincludes\iworks\integrations\class-iworks-orphans-integration-advanced-custom-fields.php:43

filterbricks/frontend/render_dataincludes\iworks\integrations\class-iworks-orphans-integration-bricks.php:27

filterorphans/etc/config/integrationsincludes\iworks\integrations\class-iworks-orphans-integration-secure-custom-fields.php:37

filteracf/format_valueincludes\iworks\integrations\class-iworks-orphans-integration-secure-custom-fields.php:43

actionadmin_enqueue_scriptsincludes\iworks\options\options.php:87

actionadmin_headincludes\iworks\options\options.php:88

actionadmin_menuincludes\iworks\options\options.php:89

actionadmin_noticesincludes\iworks\options\options.php:90

filterscreen_layout_columnsincludes\iworks\options\options.php:91

actionadmin_print_scriptsincludes\iworks\orphans\class-iworks-orphans-export.php:55

actionadmin_print_scriptsincludes\iworks\orphans\class-iworks-orphans-import.php:32

actionload-index.phpincludes\iworks\rate\rate.php:111

actioniworks-register-pluginincludes\iworks\rate\rate.php:112

actionadmin_initincludes\iworks\rate\rate.php:114

filteriworks_rate_assistanceincludes\iworks\rate\rate.php:118

filteriworks_rate_loveincludes\iworks\rate\rate.php:119

filteriworks_rate_advertising_ogincludes\iworks\rate\rate.php:125

actionadmin_enqueue_scriptsincludes\iworks\rate\rate.php:190

actionadmin_noticesincludes\iworks\rate\rate.php:191

actionadmin_enqueue_scriptsincludes\iworks\rate\rate.php:200

actionadmin_noticesincludes\iworks\rate\rate.php:201

Maintenance & Trust

Orphans Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedOct 14, 2025

PHP min version8.0

Downloads633K

Community Trust

Rating100/100

Number of ratings160

Active installs40K

Alternatives

Orphans Alternatives

Automatic NBSP

automatic-nbsp

Automatically adds a non-breaking space (&nbsp) in the content.

3K No CVEs

Widon't Part Deux

widont-part-deux

Widon't Part Deux eliminates typographic widows in the titles and content your posts and pages.

70 No CVEs

Orphan Word

orphan-word

This plugin will handle the orphan words from: post/page title, widget title, widget text and comment text.

50 No CVEs

Text Orphans Remover

text-orphans-remover

100

Prevents typographic “orphans” by replacing the final breaking space with a non‑breaking space in common text blocks (front‑end only).

0 No CVEs

Fonts Plugin | Google Fonts, Adobe Fonts & Upload Fonts

olympus-google-fonts

Instantly change your entire website's typography with Google Fonts, Adobe Fonts, or custom fonts — no coding required. Live preview your changes.

200K 3 CVEs

Developer Profile

Orphans Developer Profile

Marcin Pietrzak

23 plugins · 89K total installs

trust score

Avg Security Score

97/100

Avg Patch Time

274 days

View full developer profile

Detection Fingerprints

How We Detect Orphans

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/sierotki/assets/css/admin.css/wp-content/plugins/sierotki/assets/css/style.css/wp-content/plugins/sierotki/assets/js/admin.js/wp-content/plugins/sierotki/assets/js/script.js/wp-content/plugins/sierotki/vendor/simple_html_dom.php

Script Paths

/wp-content/plugins/sierotki/assets/js/admin.js/wp-content/plugins/sierotki/assets/js/script.js/wp-content/plugins/sierotki/vendor/simple_html_dom.php

Version Parameters

sierotki/assets/css/admin.css?ver=sierotki/assets/css/style.css?ver=sierotki/assets/js/admin.js?ver=sierotki/assets/js/script.js?ver=

HTML / DOM Fingerprints

CSS Classes

sierotki-options-pageiworks-options-input-checkboxiworks-options-input-textiworks-options-input-textareaiworks-options-input-select

HTML Comments

+92 more

Data Attributes

data-option-groupdata-option-prefixdata-option-namedata-option-iddata-option-valuedata-option-type

JS Globals

iworks_options_scriptiworks_options_data

FAQ