From 840034ca90a66ebe7835934cffcb85654e86f593 Mon Sep 17 00:00:00 2001
From: Nikita Tikhomirov <nstikhomirov@gmail.com>
Date: Mon, 21 Oct 2019 17:31:46 +0300
Subject: [PATCH] FIX: Reflected XSS Vulnerability in login after-action script

---
 src/models/login.ts | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/models/login.ts b/src/models/login.ts
index 740c8d68..656902df 100644
--- a/src/models/login.ts
+++ b/src/models/login.ts
@@ -53,7 +53,7 @@ const Model: LoginModelType = {
               redirect = redirect.substr(redirect.indexOf('#') + 1);
             }
           } else {
-            window.location.href = redirect;
+            window.location.href = '/';
             return;
           }
         }