Themes Vulnerabilities

Bricks < 1.9.6.1 - Unauthenticated Remote Code Execution

Description

The plugin does not prevent unauthenticated visitors from running code on vulnerable sites.

Proof of Concept

Affects Themes

bricks
Fixed in 1.9.6.1

References

URL
https://twitter.com/calvinalkan/status/1757441538164994099
URL
https://snicco.io/vulnerability-disclosure/bricks/unauthenticated-rce-in-bricks-1-9-6

Classification

Type
RCE
OWASP top 10
A1: Injection
CWE
CWE-94
CVSS
10.0 (critical)

Miscellaneous

Original Researcher
Calvin Alkan
Verified
Yes
WPVDB ID
8bab5266-7154-4b65-b5bc-07a91b28be42

Timeline

Publicly Published
2024-02-14 (about 1 year ago)
Added
2024-02-14 (about 1 year ago)
Last Updated
2024-02-14 (about 1 year ago)

Other

Published
Title
Published
2022-03-08
Title
Ninja Forms File Uploads Extension < 3.3.1 - Unauthenticated Arbitrary File Upload
Published
2025-07-21
Title
Nginx Cache Purge Preload < 2.1.3 - Authenticated (Administrator+) Remote Code Execution
Published
2025-04-15
Title
PDF 2 Post <= 2.4.0 - Authenticated (Subscriber+) Remote Code Execution
Published
2014-08-01
Title
Checkout Plugin - File Upload Remote Code Execution
Published
2018-05-18
Title
ProfileGrid – User Profiles, Groups and Communities <= 2.8.5 - Authenticated Code Execution