Description The plugin does not validate the api_url parameter before redirecting the user to its value, leading to an Open Redirect issue
https://localhost/wp-admin/admin.php?page=wc-settings&action=redirect_telcell_form&api_url=https://www.google.com