VYPR
High severity7.5NVD Advisory· Published Jul 5, 2019· Updated Jun 17, 2026

CVE-2019-13358

CVE-2019-13358

Description

lib/DocumentToText.php in OpenCats before 0.9.4-3 has XXE that allows remote users to read files on the underlying operating system. The attacker must upload a file in the docx or odt format.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.