Projectopia WordPress Plugin Data Modification Vulnerability Leading to Denial-of-Service

A vulnerability exists in the Projectopia WordPress Project Management plugin, specifically in versions through 5.1.16. The issue arises from a lack of proper capability checks in the 'pto_remove_logo' function, allowing authenticated attackers with Subscriber-level access or higher to delete arbitrary option values from the WordPress site. This unauthorized deletion can be exploited to remove options that, when absent, cause errors on the site, thereby disrupting service for legitimate users.

Impact

Exploitation of this vulnerability allows for unauthorized deletion of WordPress option values, which can be used to create errors on the site and disrupt service for users.

Reproduction

To reproduce this vulnerability, an authenticated user with Subscriber-level access or higher can send an AJAX request to the 'pto_remove_logo' action. The request must include the necessary nonce for verification. Once the request is processed, the specified option value will be deleted, potentially causing a disruption on the site.

Remediation

Users are advised to update the Projectopia WordPress Project Management plugin to version 5.1.17 or later.