CodeCanyon RISE Ultimate Project Manager Insecure Direct Object Reference Vulnerability in Profile Picture Handler

An Insecure Direct Object Reference (IDOR) vulnerability has been identified in CodeCanyon RISE Ultimate Project Manager version 3.8.2. This issue allows authenticated users to manipulate the profile image upload endpoint for team members, specifically by altering the user ID in the request. The application fails to properly validate authorization, enabling unauthorized users to change the profile pictures of others, which could lead to impersonation or disruption of user experience.

Impact

Exploitation of this vulnerability allows for unauthorized modification of user profile images, potentially leading to impersonation or confusion among users.

Reproduction

To reproduce this vulnerability, an authenticated user can upload a profile image through the 'My Profile' section. After intercepting the upload request with a proxy tool like Burp Suite, the user ID in the request can be changed to that of another user. The application will process the request and update the profile picture for the targeted user ID, without any access control checks.