This is a big deal, nobody would expect Google to fuck up this badly, least of all the parties who support Google's social login.
That means that, even if you don't want anything to do with Google at all, others could have impersonated you by registering a Google Workspace trial account on your email address, "verifying" their account through this vulnerability, and logging in to third-party sites (that support Google login) by using your email address.
replies(1):