CVE-2025-1313 is an authentication bypass vulnerability classified under CWE-288 affecting the Nokri – Job Board WordPress Theme developed by scriptsbundle. The flaw exists in all versions up to and including 1.6.3, where the theme fails to properly validate a user's identity before allowing updates to sensitive account details such as email addresses. This improper validation enables authenticated users with minimal privileges (Subscriber-level or higher) to change the email address of any user, including administrators. By altering the email address, attackers can trigger password reset mechanisms to take over accounts without needing the original credentials. The vulnerability is exploitable remotely over the network without requiring user interaction beyond initial authentication. The CVSS v3.1 score of 8.8 reflects the vulnerability's low attack complexity, lack of required user interaction, and high impact on confidentiality, integrity, and availability. No patches or fixes are currently linked, and no known exploits have been reported in the wild as of the published date. The vulnerability highlights a critical flaw in access control and identity verification within the theme's user management functionality, making it a severe risk for websites using this theme.

The impact of CVE-2025-1313 is significant for organizations using the Nokri WordPress theme. Attackers with low-level authenticated access can escalate privileges to administrator level, leading to full site compromise. This includes unauthorized access to sensitive data, modification or deletion of content, and potential deployment of malicious code or backdoors. The ability to reset passwords of arbitrary users undermines the integrity and confidentiality of user accounts and can disrupt availability if attackers lock out legitimate users. For job board websites, this could result in data breaches involving personal and professional information of users, damaging reputation and trust. The vulnerability could also be leveraged as a foothold for further attacks within an organization's network. Since WordPress powers a large portion of the web, and themes like Nokri are widely used for job boards, the scope of affected systems is substantial. The lack of required user interaction and low complexity of exploitation increase the likelihood of exploitation once the vulnerability is publicly known.

To mitigate CVE-2025-1313, organizations should immediately upgrade the Nokri theme to a patched version once available. Until a patch is released, administrators should restrict Subscriber-level and other low-privilege user access to trusted individuals only. Implement additional monitoring and alerting for unusual account changes, especially email address modifications and password resets. Employ multi-factor authentication (MFA) for all administrator accounts to reduce the risk of account takeover. Review and harden WordPress user roles and permissions to minimize unnecessary privileges. Consider deploying a Web Application Firewall (WAF) with custom rules to detect and block suspicious requests targeting user update endpoints. Regularly audit user accounts and logs for signs of unauthorized changes. If possible, disable or limit the theme’s user detail update functionality until a fix is applied. Engage with the theme vendor or community to track patch releases and security advisories.