Logo
Logo

May 8, 2026

Breakdance 2.7.2 – Security Update

Breakdance 2.7.2 is now available. This release fixes a security issue in Form Submissions and a popup shortcode regression.

Security Update

This update fixes a stored XSS issue in the Form Submissions action Details panel in WordPress Admin. Some action context data in a stored submission was shown without escaping. In specific cases, HTML or JavaScript stored in that action log could run when an authorized WordPress user opened the submission’s action Details panel.

The update escapes action context keys and nested action context values before rendering them.

You should update if:

  • You use Breakdance forms with Store Submission enabled
  • You use form actions that log request or response details, such as Webhook
  • Your forms accept public submissions

The issue requires a stored form submission and an authorized WordPress user with access to Form Submissions to open the action Details panel.

This issue affects the admin submission details view. It does not affect normal front-end page rendering for visitors.

Bug Fix

  • Popups: Fixed a regression where shortcodes inside Breakdance popups did not render on the front end. Popups now render through the normal WordPress footer flow again.
    Experience the Breakdance difference.
    Upgrade your WordPress editing experience with Breakdance, the visual builder for WordPress that's both easy-to-use and exceptionally powerful.
    • Unlimited Sites
    • 60-day Money Back Guarantee
    • Premium Support
    • Only $199.99/Year
    Get Breakdance

    Experience the Breakdance difference.

    Get Breakdance

    Unlimited license.
    Unlimited websites.

    Get maximum flexibility with unlimited licensing and domain activations.

    60-day money back guarantee.
    No questions asked.

    Get your money back within 60 days of purchase, no questions asked. It's risk-free!

    Premium support.
    Get all the help you need.

    We offer premium support to ensure the ultimate customer experience.

    Just $199.99/year for
    unlimited sites.

    For a limited time, we're offering an unlimited site license for just $199.99/year. Buy now to lock in this price.

    Breakdance logo
    Upgrade your WordPress editing experience with Breakdance, the best visual website builder for WordPress.

    Overview

    Home Templates Pricing Breakdance Free Try Breakdance Live Customer Login

    Design Library

    All Templates 1-Click Complete Websites Section Libraries

    Vs The Competition

    Breakdance vs Elementor Breakdance vs Divi Breakdance vs The Block Editor

    For Power Users

    Element Studio Craft With Code Client Access Control

    General Features

    Total Creative Control Global Styles 145 Built-In Elements Superior Performance & SEO Popup Builder Form Builder Header Builder Mega Menu Builder

    WooCommerce

    WooCommerce Overview Templating Product Pages Product Loop Builder Shop Filters Elements Cart & Checkout Pages

    Dynamic Data

    Dynamic Data Overview Post Loop Builder Term Loop Builder Conditional Element Display Repeater Fields Search & Filter

    Get Help

    Video Tutorials Documentation Contact Us Frequently Asked Questions

    Community

    Website Showcase Hire An Expert Facebook User Group

    Company

    Updates Blog About Us Brand Assets Affiliate Program Legal Terms & Privacy
    We ❤️ WordPress. Our plugin stack »
    © Soflyy. All rights reserved