A vulnerability has been found in will-moss Isaiah up to 1.36.9 and classified as critical. This affects an unknown function of the file app/main.go of the component Websocket Connection Authentication. The manipulation leads to improper authentication.

This vulnerability is documented as CVE-2026-15542. The attack can be initiated remotely. There is not any exploit available.

The pull request to fix this issue awaits acceptance.