A vulnerability classified as very critical has been found in decolua 9router up to 0.4.36. Affected by this issue is some unknown functionality of the file src/proxy.js of the component Middleware. Performing a manipulation results in improper authentication.

This vulnerability was named CVE-2026-46339. The attack may be initiated remotely. There is no available exploit.