This allows you to redirect the victim to a malcious website. These are low impact vulnerabilities in most cases unless you can use them to leak tokens/OAuth tokens.

We can use websites like webhook.site to steal tokens from people.