Month Of Abysssec Undisclosed Bugs – Syndeo CMS version 2.8.02 suffers from cross site request forgery, cross site scripting and local file inclusion vulnerabilities.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/93519/moaub04-syndeocms.pdf
Source: https://packetstormsecurity.com/files/93519/Month-Of-Abysssec-Undisclosed-Bugs-Syndeo-CMS-2.8.02.html