VYPR

Grimmory

by Grimmory Tools

Source repositories

CVEs (1)

  • CVE-2026-42451MedMay 8, 2026
    risk 0.34cvss 6.3epss 0.00

    Grimmory is a self-hosted digital library. Prior to version 2.3.1, a stored cross-site scripting (XSS) vulnerability in Grimmory's browser-based EPUB reader allows an attacker to embed arbitrary JavaScript in a crafted EPUB file. When a victim opens the book, the script executes…