Description
The Bricks theme for WordPress is vulnerable to blind SQL Injection via the ‘p’ parameter in all versions up to, and including, 1.12.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
Published: 2025-07-29
Score: 7.5 High
EPSS: < 1% Very Low
KEV: No
Impact: Confidentiality compromise via SQL injection
Action: Immediate Patch
AI Analysis

Impact

The Bricks theme for WordPress contains a blind SQL injection flaw in the ‘p’ parameter that is sent to the server. Because the value supplied by the user is not properly escaped or prepared, an attacker can append additional SQL statements to the existing query. This allows an unauthenticated user to read sensitive information from the database, posing a risk to data confidentiality. The vulnerability is categorized as a CWE‑89 input validation weakness, consistent with other injection-based flaws.

Affected Systems

Bricks Builder versions 1.12.4 and all earlier releases deployed within WordPress installations are affected. Sites utilizing Bricks as the primary theme without an upgrade to the 2.0 release fall within the scope of this issue.

Risk and Exploitability

The CVSS score of 7.5 highlights a medium‑to‑high severity, yet the EPSS score of less than 1% indicates a low probability of exploitation at present. The flaw is not listed in CISA’s KEV catalog. Attackers would need to craft an unauthenticated HTTP request containing a malicious ‘p’ parameter; the injection is blind, meaning the attacker may not directly receive query results without additional probing. Nonetheless, successful exploitation could expose database contents and other sensitive data.

Generated by OpenCVE AI on April 21, 2026 at 19:34 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the Bricks Builder theme to version 2.0 or later, which removes the vulnerable handling of the ‘p’ parameter.
  • Ensure that the WordPress core, all plugins, and the Bricks theme are maintained at their latest stable releases to reduce overall attack surface.
  • Configure a web application firewall to detect and block anomalous modifications to the ‘p’ parameter and to filter suspicious SQL patterns, and review the database user’s privileges to enforce the principle of least privilege.

Generated by OpenCVE AI on April 21, 2026 at 19:34 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-22967 The Bricks theme for WordPress is vulnerable to blind SQL Injection via the ‘p’ parameter in all versions up to, and including, 1.12.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
History

Tue, 29 Jul 2025 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 29 Jul 2025 10:15:00 +0000

Type Values Removed Values Added
First Time appeared Bricksable
Bricksable bricksable For Bricks Builder
Wordpress
Wordpress wordpress
Vendors & Products Bricksable
Bricksable bricksable For Bricks Builder
Wordpress
Wordpress wordpress

Tue, 29 Jul 2025 04:45:00 +0000

Type Values Removed Values Added
Description The Bricks theme for WordPress is vulnerable to blind SQL Injection via the ‘p’ parameter in all versions up to, and including, 1.12.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
Title Bricks Builder <= 1.12.4 - Unauthenticated SQL Injection via `p` Parameter
Weaknesses CWE-89
References
Metrics cvssV3_1

{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}

Subscriptions

Bricksable Bricksable For Bricks Builder
Wordpress Wordpress
cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published:

Updated: 2026-04-08T16:55:14.110Z

Reserved: 2025-06-22T09:01:09.588Z

Link: CVE-2025-6495

cve-icon Vulnrichment

Updated: 2025-07-29T14:04:15.643Z

cve-icon NVD

Status : Deferred

Published: 2025-07-29T05:15:32.550

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-6495

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-21T19:45:16Z

Weaknesses