Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
synametrics synaman vulnerabilities and exploits
(subscribe to this query)
801
VMScore
CVE-2022-26251
The HTTP interface of Synaman v5.1 and below exists to allow authenticated malicious users to execute arbitrary code and escalate privileges.
Synametrics Synaman
695
VMScore
CVE-2015-3140
Multiple cross-site request forgery (CSRF) vulnerabilities in Synametrics Technologies SynaMan prior to 3.5 Build 1451, Syncrify prior to 3.7 Build 856, and SynTail prior to 1.5 Build 567
Synametrics Synaman 1.0
Synametrics Synaman 1.1
Synametrics Synaman 2.0
Synametrics Synaman 2.1
Synametrics Synaman 2.2
Synametrics Synaman 2.3
Synametrics Synaman 2.4
Synametrics Synaman 2.5
Synametrics Synaman 2.6
Synametrics Synaman 2.7
Synametrics Synaman 3.0
Synametrics Synaman 3.1
Synametrics Synaman 3.2
Synametrics Synaman 3.3
Synametrics Synaman 3.4
Synametrics Syncrify 1.3
Synametrics Syncrify 1.4
Synametrics Syncrify 2.0
Synametrics Syncrify 2.1
Synametrics Syncrify 2.2
Synametrics Syncrify 2.3
Synametrics Syncrify 2.4
3 EDB exploits
445
VMScore
CVE-2022-22828
An insecure direct object reference for the file-download URL in Synametrics SynaMan prior to 5.0 allows a remote malicious user to access unshared files via a modified base64-encoded filename string.
Synametrics Synaman
1 Github repository
409
VMScore
CVE-2022-26250
Synaman v5.1 and below exists to contain weak file permissions which allows authenticated malicious users to escalate privileges.
Synametrics Synaman
355
VMScore
CVE-2018-10763
Multiple cross-site scripting (XSS) vulnerabilities in Synametrics SynaMan 4.0 build 1488 via the (1) Main heading or (2) Sub heading fields in the Partial Branding configuration page.
Synametrics Synaman 4.0
1 EDB exploit
215
VMScore
CVE-2018-10814
Synametrics SynaMan 4.0 build 1488 uses cleartext password storage for SMTP credentials.
Synametrics Synaman 4.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started