It will redirect to example.com. You can replace example.com with some legitimate domain or spoofed domain.
The description of the risk is
By modifying untrusted URL input to a malicious site, an attacker may successfully launch a phishing scam and steal user credentials.
Because the server name in the modified link is identical to the original site, phishing attempts may have a more trustworthy appearance.
This bug report is related to Security.
Currently novnc is allowing open direction, which could potentially be used for phishing attempts
To test. //example. com/%2F. .
https://<sites' vnc domain>
include .. at the end
For example: vncproxy. my.domain. com//example. com/%2F..
http://
It will redirect to example.com. You can replace example.com with some legitimate domain or spoofed domain.
The description of the risk is
By modifying untrusted URL input to a malicious site, an attacker may successfully launch a phishing scam and steal user credentials.
Because the server name in the modified link is identical to the original site, phishing attempts may have a more trustworthy appearance.