From 5ef2fb5a3d23e61b479e5406397772c606d14080 Mon Sep 17 00:00:00 2001
From: CVE Team <cve-request@mitre.org>
Date: Mon, 5 Jul 2021 11:00:55 +0000
Subject: [PATCH] "-Synchronized-Data."

---
 2021/23xxx/CVE-2021-23401.json | 17 ++++++++++-------
 1 file changed, 10 insertions(+), 7 deletions(-)

diff --git a/2021/23xxx/CVE-2021-23401.json b/2021/23xxx/CVE-2021-23401.json
index 6370dd16aa8..6fdb1d477b2 100644
--- a/2021/23xxx/CVE-2021-23401.json
+++ b/2021/23xxx/CVE-2021-23401.json
@@ -48,16 +48,19 @@
     "references": {
         "reference_data": [
             {
-                "refsource": "CONFIRM",
-                "url": "https://snyk.io/vuln/SNYK-PYTHON-FLASKUSER-1293188"
+                "refsource": "MISC",
+                "url": "https://snyk.io/vuln/SNYK-PYTHON-FLASKUSER-1293188",
+                "name": "https://snyk.io/vuln/SNYK-PYTHON-FLASKUSER-1293188"
             },
             {
-                "refsource": "CONFIRM",
-                "url": "https://github.com/lingthio/Flask-User"
+                "refsource": "MISC",
+                "url": "https://github.com/lingthio/Flask-User",
+                "name": "https://github.com/lingthio/Flask-User"
             },
             {
-                "refsource": "CONFIRM",
-                "url": "https://github.com/lingthio/Flask-User/blob/master/flask_user/user_manager__utils.py"
+                "refsource": "MISC",
+                "url": "https://github.com/lingthio/Flask-User/blob/master/flask_user/user_manager__utils.py",
+                "name": "https://github.com/lingthio/Flask-User/blob/master/flask_user/user_manager__utils.py"
             }
         ]
     },
@@ -65,7 +68,7 @@
         "description_data": [
             {
                 "lang": "eng",
-                "value": "This affects all versions of package Flask-User.\n When using the make_safe_url function, it is possible to bypass URL validation and redirect a user to an arbitrary URL by providing multiple back slashes such as /////evil.com/path or \\\\\\evil.com/path.\r\n\r\nThis vulnerability is only exploitable if an alternative WSGI server other than Werkzeug is used, or the default behaviour of Werkzeug is modified using  'autocorrect_location_header=False.\n"
+                "value": "This affects all versions of package Flask-User. When using the make_safe_url function, it is possible to bypass URL validation and redirect a user to an arbitrary URL by providing multiple back slashes such as /////evil.com/path or \\\\\\evil.com/path. This vulnerability is only exploitable if an alternative WSGI server other than Werkzeug is used, or the default behaviour of Werkzeug is modified using 'autocorrect_location_header=False."
             }
         ]
     },