URL Redirection to Untrusted Site (Open Redirect)
When using the make_safe_url function, it is possible to bypass URL validation and redirect a user to an arbitrary URL by providing multiple back slashes.
Advisories for Pypi/Flask-User package
2021
When using the make_safe_url function, it is possible to bypass URL validation and redirect a user to an arbitrary URL by providing multiple back slashes.