openstack horizon is vulnerable to open redirection. A remote attacker is able to redirect a user to a malicious site via the next
parameter.
www.openwall.com/lists/oss-security/2020/12/08/2
bugs.launchpad.net/horizon/+bug/1865026
github.com/openstack/horizon/commit/b6736593689d2392b77948507a7e7abfff917614
review.opendev.org/c/openstack/horizon/+/758841/
review.opendev.org/c/openstack/horizon/+/758843/
security.openstack.org/ossa/OSSA-2020-008.html
www.debian.org/security/2020/dsa-4820