Description
The Nokri - Job Board WordPress Theme theme for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 1.6.3. This is due to the plugin not properly validating a user's identity prior to updating their details like email address. This makes it possible for authenticated attackers, with Subscriber-level access and above, to change arbitrary user's email addresses, including administrators, and leverage that to reset the user's password and gain access to their account.
Published: 2025-07-12
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: Privilege Escalation via Account Takeover
Action: Immediate Patch
AI Analysis

Impact

The Nokri – Job Board WordPress Theme (versions up to and including 1.6.3) fails to validate a user's identity before allowing updates to account details, such as an email address. This flaw permits any authenticated user with Subscriber‑level permissions or higher to modify any user’s email address, including administrators. Once the attacker changes an administrator’s email, they can trigger a password reset and subsequently gain full control of that administrator account. The primary impact is complete administrative takeover of the WordPress site, enabling any further malicious activity or data exfiltration.

Affected Systems

WordPress sites deploying the Nokri – Job Board WordPress Theme, version 1.6.3 or older. The vulnerability affects all installations regardless of configuration, as the issue stems from the theme’s core validation logic.

Risk and Exploitability

With a CVSS score of 8.8 the flaw is classified as high severity. The EPSS score of <1% indicates a low probability of exploitation in the wild, yet the risk remains significant because the attacker only needs authenticated access. The vulnerability is not listed in CISA’s KEV catalog, but its potential for administrator compromise makes it a critical concern for site owners. The likely attack path requires an authenticated subscriber to use the theme’s email update functionality, implying an insider or compromised user scenario.

Generated by OpenCVE AI on April 21, 2026 at 19:43 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade the Nokri theme to the latest released version (>=1.6.4) which includes the authentication fix.
  • If a theme upgrade is not immediately possible, disable or remove the email change capability for Subscriber‑level users or temporarily deactivate the Nokri plugin while corrective action is taken.
  • After patching, reset the passwords and verify the email addresses of all administrative accounts to ensure no unauthorized changes exist, and review user permissions to restrict the ability to modify sensitive account details.

Generated by OpenCVE AI on April 21, 2026 at 19:43 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-21206 The Nokri - Job Board WordPress Theme theme for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 1.6.3. This is due to the plugin not properly validating a user's identity prior to updating their details like email address. This makes it possible for authenticated attackers, with Subscriber-level access and above, to change arbitrary user's email addresses, including administrators, and leverage that to reset the user's password and gain access to their account.
History

Mon, 14 Jul 2025 16:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Sat, 12 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.00039}

Sat, 12 Jul 2025 05:45:00 +0000

Type Values Removed Values Added
Description The Nokri - Job Board WordPress Theme theme for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 1.6.3. This is due to the plugin not properly validating a user's identity prior to updating their details like email address. This makes it possible for authenticated attackers, with Subscriber-level access and above, to change arbitrary user's email addresses, including administrators, and leverage that to reset the user's password and gain access to their account.
Title Nokri - Job Board WordPress Theme <= 1.6.3 - Authenticated (Subscriber+) Privilege Escalation via Account Takeover
Weaknesses CWE-288
References
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

No data.

cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published:

Updated: 2026-04-08T16:52:21.740Z

Reserved: 2025-02-14T21:17:16.579Z

Link: CVE-2025-1313

cve-icon Vulnrichment

Updated: 2025-07-14T15:49:30.057Z

cve-icon NVD

Status : Deferred

Published: 2025-07-12T06:15:20.820

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-1313

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-21T19:45:16Z

Weaknesses
  • CWE-288

    Authentication Bypass Using an Alternate Path or Channel