← Back

Textract

textract

Vendor: Textract Project • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2016-10320
1Textract Project
1Textract
May 13, 2026
Apr 6, 2017
N/A· v4
7.8 HIGH· v3
9.3 HIGH· v2
textract before 1.5.0 allows OS Command Injection attacks via a filename in a call to the process function. This may be a remote attack if a web application accepts names of arbitrary uploaded files.