Here an XML file is read and the information is accessed and manipulated by an external program. Parsers convert XML data into a form that other programs can use.
For XXE injection is parser is misconfigured to process external entities then it can lead to unauthorized access to files, websites etc.
