A vulnerability categorized as critical has been discovered in Documenso up to 2.11.0 . Affected by this vulnerability is an unknown functionality of the file packages/auth/server/lib/utils/handle-oauth-callback-url.ts of the component Google OAuth Login . The manipulation results in improper authentication. This vulnerability is known as CVE-2026-13543 . It is possible to launch the attack remotely. Furthermore, an exploit is available. The pull request to fix this issue awaits acceptance.