github.com/go-gitea/gitea is vulnerable to open redirect. The vulnerability exists in RedirectToFirst
function in context.go
due to the presence of backslashes in the Locations which allows an attacker to parse malicious URLs to redirect the user.