A vulnerability has been found in GARU Dancer::Plugin::Auth::Google up to 0.07 and classified as critical. The affected element is an unknown function of the component User Agent. The manipulation leads to channel accessible by non-endpoint.

This vulnerability is documented as CVE-2026-13410. The attack can be initiated remotely. There is not any exploit available.