Synapse is an application. for open federated instant messaging and VoIPSynapse. versions prior to Synapse 1.47.1 contain a path traversal vulnerability that could be exploited by an attacker to bypass the authentication process and download files from a remote server to an arbitrary directory.