diff --git a/modules/account/src/Volo.Abp.Account.Web/Pages/Account/Register.cshtml.cs b/modules/account/src/Volo.Abp.Account.Web/Pages/Account/Register.cshtml.cs
index c481715a16..6b990253fc 100644
--- a/modules/account/src/Volo.Abp.Account.Web/Pages/Account/Register.cshtml.cs
+++ b/modules/account/src/Volo.Abp.Account.Web/Pages/Account/Register.cshtml.cs
@@ -137,7 +137,7 @@ public class RegisterModel : AccountPageModel
                 await RegisterLocalUserAsync();
             }
 
-            return Redirect(ReturnUrl ?? "~/"); //TODO: How to ensure safety? IdentityServer requires it however it should be checked somehow!
+            return await RedirectSafelyAsync(ReturnUrl, ReturnUrlHash);
         }
         catch (BusinessException e)
         {