Open redirect vulnerability in pgAdmin 4 versions prior to v6.14 allows a remote unauthenticated attacker to redirect a user to an arbitrary web site and conduct a phishing attack by having a user to access a specially crafted URL.
"https://github.com/pypa/advisory-database/blob/main/vulns/pgadmin4/PYSEC-2026-894.yaml"