A vulnerability was found in koodo-reader Koodo Reader up to 2.3.0. It has been rated as problematic. Affected is an unknown function of the component IPC Handler. This manipulation causes cross site scripting.

This vulnerability is registered as CVE-2026-55408. Remote exploitation of the attack is possible. No exploit is available.