Security Advisory

CVE-2019-13358

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-07-05 20:26:22

Last updated 2024-08-04 23:49:24

Assigner mitre

State PUBLISHED

Description

lib/DocumentToText.php in OpenCats before 0.9.4-3 has XXE that allows remote users to read files on the underlying operating system. The attacker must upload a file in the docx or odt format.

← Browse all CVEs View on cve.org ↗