CVE-2022-26250 — CVSS 7.8 (high): Synaman v5.1 and below was discovered to contain weak file permissions which allows authenticated attackers to escalate privileges.
CVE-2022-22828 — CVSS 7.5 (high): An insecure direct object reference for the file-download URL in Synametrics SynaMan before 5.0 allows a remote attacker to access unshared…
CVE-2022-26251 — CVSS 7.2 (high): The HTTP interface of Synaman v5.1 and below was discovered to allow authenticated attackers to execute arbitrary code and escalate…
CVE-2018-10763 — CVSS 4.8 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Synametrics SynaMan 4.0 build 1488 via the (1) Main heading or (2) Sub heading…