This affects the package Flask-Unchained before 0.9.0. When using the the validateredirecturl function, it is possible to bypass URL validation and redirect a user to an arbitrary URL by providing multiple back slashes such as \\evil.com/path. This vulnerability is only exploitable if an alternative WSGI server other than Werkzeug is used, or the default behaviour of Werkzeug is modified using 'autocorrectlocation_header=False.
{ "github_reviewed_at": "2021-06-14T19:36:47Z", "severity": "MODERATE", "nvd_published_at": null, "github_reviewed": true, "cwe_ids": [ "CWE-601" ] }