WordPress · Bricks Theme For Wordpress · CVE-2025-6495
**Name of the Vulnerable Software and Affected Versions**
Bricks theme for WordPress versions prior to 1.12.5
**Description**
The Bricks theme for WordPress is susceptible to a blind SQL Injection issue via the `p` parameter. Insufficient escaping of user-supplied input and inadequate preparation of existing SQL queries allow unauthenticated attackers to inject additional SQL queries, potentially extracting sensitive information from the database.
**Recommendations**
Update the Bricks theme for WordPress to version 1.12.5 or later.