GitHub

HTTP request redirections should not be open to forging attacks

Open redirection occurs when an application uses user-controllable data to redirect users to a URL. An attacker with malicious intent could manipulate a user to ...