CVE-2018-14965
EMLsoft 5.4.5 contains a CSRF vulnerability on the endpoint eml/upload/eml/?action=address&do=add. The CVE entry notes CSRF as the issue; CVSS3.0/2.0 metrics indicate a network-accessible flaw with high impact to confidentiality, integrity, and availability (C/H/I/A at high levels) and user inter...