github.com/s-gv/orangeforum is susceptible to open redirect attacks. The attacks exist because views/auth.go
does not properly handle the redirectURL
parameter in LoginHandler and LogoutHandler, allowing an attacker to create a link to redirect users to a malicious webpage.