Lqxduo

**Name of the Vulnerable Software and Affected Versions** Convertigo versions 8.3.4 and earlier **Description** The issue is related to the TwsCachedXPathAPI in Convertigo, which does not restrict the use of commons-jxpath APIs. **Recommendations** For versions 8.3.4 and earlier, consider restricting access to the TwsCachedXPathAPI until a patch is available. As a temporary workaround, consider disabling the use of commons-jxpath APIs in the TwsCachedXPathAPI to minimize the risk of exploitation.